AWS compliance and governance

AWS Security and Cost Management Concepts

Dev Bhosale

Principal Data & Cloud Architect

Cloud governance

Cloud governance

AWS Security and Cost Management Concepts

Regulations around the world

  • Large companies are required to comply with regulations around the world
  • Sarbanes-Oxley for accounting applies to all public companies in the US
  • GDPR for consumer data protection applies to large companies in Europe

World regulations

AWS Security and Cost Management Concepts

Governance functions

  • Identify critical resources and governance model
  • Detect anomalies & malicious activities
  • Protect data and assets
  • Respond through incident response planning
  • Recover to the prior condition (for data loss/attack)

Governance functions

AWS Security and Cost Management Concepts

AWS tools for governance

AWS List of tools

AWS Security and Cost Management Concepts

Threat identification

Security hub introduction

  • Continuously checks your AWS resources for security best practices
  • Find misconfigurations and gathers security alerts
AWS Security and Cost Management Concepts

Tools for protection

Shield

IAM

AWS Security and Cost Management Concepts

Detect malicious activities

  • Detect anomalies and malicious activities with continuous monitoring from CloudWatch

cloudwatch

AWS Security and Cost Management Concepts

Detect malicious activities

Inspector and guard duty

AWS Security and Cost Management Concepts

Respond and recover

CloudTrail and Glacier

AWS Security and Cost Management Concepts

Respond and recover

respond and recover

AWS Security and Cost Management Concepts

Let's practice!

AWS Security and Cost Management Concepts

Preparing Video For Download...