Automating Compliance in the Cloud for AWS CIS | Ep.1 What is AWS CIS?
ฝัง
- เผยแพร่เมื่อ 1 ส.ค. 2021
- Episode 1 of automating compliance in the cloud. In this series, I'll explain how to automate various compliance frameworks in the AWS cloud. Starting with AWS CIS. All resources are listed below!
📸 Instagram - / andrewroee
🐦 Twitter - / aroesec
🌐 GitHub - github.com/aroesec
🎮 Discord - / discord
🎙 My weekly podcast -open.spotify.com/show/13OHGg4...
Resources:
AWS CIS Framework Controls List - docs.aws.amazon.com/securityh...
AWS Config - aws.amazon.com/config/
🚀My PC Build
RTX 3070 Ti Graphics Card - amzn.to/3NVvbZ7
Intel i7 10700k cpu - amzn.to/3IpRIMU
LG 36 inch ultra wide monitor - amzn.to/3NRnbZ6
BenQ Zowie 24.5in 240hz - amzn.to/3Rtf7kC
LIAN OI O11 Computer case - amzn.to/3uAw8PR
AORUS Pro-WIFI MOBO - amzn.to/3AA0FkO
HyperX RAM (32gbs) - amzn.to/3RfMCGN
Corsair RMX Series 750 Watt PSU - amzn.to/3PeLQYH
Ducky One 2 SF - amzn.to/3ylQUE8
🚀My Macbook/Content Setup
Macbook Pro M1 (16 inch) - amzn.to/3usIPw4
Lumix Panasonic Camera - amzn.to/3ylsxq5
Stellar X2 Microphone - amzn.to/3ar53ba
Scarlett 2i2 USB Interface - amzn.to/3yLAwy2
Logitech MX Mechanical Mini Keyboard - amzn.to/3c0GLoR
Logitech MX Master 3 Mouse - amzn.to/3IqgRHg - วิทยาศาสตร์และเทคโนโลยี
These videos are the highlight of my week.
Thank you zackson
Great series idea! Looking forward to more :)
Thank you!!
This is great! Looking forward to the next video in the series
Thank you! Stay tuned.
You are awesome! I am a Cloud Security Engineer also, just started at my company a month ago. Your videos are really helping me out! Thanks
Glad I can help!!
I am sooo excited for this series. Thank you for making it!
Thank you, hope you enjoy!
Very excited to watch these. Thanks for continuing to put out great content!
thank you! Glad you're enjoying it.
Awesome!
Thank you!
I really enjoyed this!!
Thank you! Episode 2 just came out
Great! Cool to see the services match up with real-world compliance. The CCP is really high level so the reasons or methods how an engineer would config them are not really stated. Looking forward to the next one!
Thank you! Glad you got some value out of it
I foresee privacy laws such as CPRA and VCDPA coming into the fold soon too. Looking forward to seeing how CSPs interpret and implement these requirements
As am I! It’ll be very involved and interesting
Tell us about HIPAA and GDPR.
Will do!
This is great talk! Question: By enabling Security Hub, you can have CIS AWS benchmark check enabled for every control listed in this documentation. What would be the difference between you create your own automation vs enabling it through Security Hub?
So through security hub it’s going to tell you what resources are out of compliance with cis. With this automation we’re going to automate putting those resources into compliance
@@AndrewRoe so it's more like a remediation action on non-compliant resources?
But we’ll be turning on security hub using IaC as well!
@@rononoazorokun exactly, but there are also things that need to be configured to run checks for cis that security hub doesn’t do and I’ll show those as well.
@@AndrewRoe that sounds cool! Can't wait for your upcoming videos!
Make is 5 mins. Wasting time
I think I can definitely shorten some of my fillers in my speech. However, I don't think I could fit all of the content into 5 minutes. Feel free to watch it on 2x speed.