Accelerating innovation at AWS Security
At re:Invent or attending remotely? Check out my “Ultimate Guide to AWS re:Invent 2022” post for some tips and tricks to get the most out of the show.
The security leadership session at AWS re:Invent 2022 was called, “What we can learn from customers: Accelerating innovation at AWS Security”. CJ Moses, CISO of AWS, used this session to explain what AWS is doing to help everyone with security, to highlight some key releases in 2022, and what we can expect in 2023 when it comes to security.
CJ definitely put his own stamp on the leadership sessions. More in this Twitter thread π.
Twitter Thread π§΅
What we can learn from customers: Accelerating innovation at AWS Security
#reinvent
@marknca tweeted at 01-Dec-2022, 20:32
Tweet 2/57 π Next tweet π Start
Tweet 3/57 π Next tweet π Start
congrats CJ!
#reinvent
@marknca tweeted at 01-Dec-2022, 20:33
Tweet 4/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:34
Tweet 5/57 π Next tweet π Start
- both driven by data
- safety is a key factor for success
#reinvent
@marknca tweeted at 01-Dec-2022, 20:34
Tweet 6/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:35
Tweet 7/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:36
Tweet 8/57 π Next tweet π Start
both looking for one tiny indicator amid a torrent of data
#reinvent
@marknca tweeted at 01-Dec-2022, 20:37
Tweet 9/57 π Next tweet π Start
pre-AWS @mosescj58 was working with @jeffbarr back in 2007. those conversations kicked off a ton of security work
β¦which brought CJ to AWS
#reinvent
@marknca tweeted at 01-Dec-2022, 20:39
Tweet 10/57 π Next tweet π Start
β¦wow, think about that vs. what we heard in Peter DeSantisβ keynote on Monday about @awscloud Lambda function isolation
#reinvent
@marknca tweeted at 01-Dec-2022, 20:40
Tweet 11/57 π Next tweet π Start
bean bag chairs => hand me down cube from AOL (!) in a dingy cornerβ¦working together as a small team cracking on a deeply interesting & challenging problem
#reinvent
@marknca tweeted at 01-Dec-2022, 20:41
Tweet 12/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:42
Tweet 13/57 π Next tweet π Start
Tweet 14/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:43
Tweet 15/57 π Next tweet π Start
β¦though thereβs a ton of info everywhere in the service docs/whitepapers/etc.
#reinvent
@marknca tweeted at 01-Dec-2022, 20:44
Tweet 16/57 π Next tweet π Start
β¦thatβs a lot of zeros
#reinvent
@marknca tweeted at 01-Dec-2022, 20:44
Tweet 17/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:45
Tweet 18/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:45
Tweet 19/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:46
Tweet 20/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:47
Tweet 21/57 π Next tweet π Start
β¦AWS WAF at https://aws.amazon.com/waf/
#reinvent
@marknca tweeted at 01-Dec-2022, 20:48
Tweet 22/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:49
Tweet 23/57 π Next tweet π Start
thatβs why weβre seeing so many new feature advances in things like Amazon Macie and Amazon GuardDuty
#reinvent
@marknca tweeted at 01-Dec-2022, 20:49
Tweet 24/57 π Next tweet π Start
β¦Amazon GuardDuty at https://aws.amazon.com/guardduty/
#reinvent
@marknca tweeted at 01-Dec-2022, 20:50
Tweet 25/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:51
Tweet 26/57 π Next tweet π Start
more details at https://aws.amazon.com/iam/features/mfa/
remember if youβre onsite, you can pick up a hardware MFA keyβ¦and you can always use an MFA app
#reinvent
@marknca tweeted at 01-Dec-2022, 20:52
Tweet 27/57 π Next tweet π Start
https://twitter.com/AWSSecurityInfo/status/1597263326589120514
#reinvent
@marknca tweeted at 01-Dec-2022, 20:52
Tweet 28/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:53
Tweet 29/57 π Next tweet π Start
- educate everyone about #security
- build a security-first culture
- hire & develop the best
#reinvent
@marknca tweeted at 01-Dec-2022, 20:55
Tweet 30/57 π Next tweet π Start
- shift left & automate
- invest in a dynamic workforce
- make security the department of βyes, andβ¦β
#reinvent
@marknca tweeted at 01-Dec-2022, 20:57
Tweet 31/57 π Next tweet π Start
hang in there CJ!
#reinvent
@marknca tweeted at 01-Dec-2022, 20:57
Tweet 32/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 20:58
Tweet 33/57 π Next tweet π Start
β¦this is a data problem. @awscloud Security Lake is designed to help remove barriers in analyzing that data and drawing insights from it
#reinvent
@marknca tweeted at 01-Dec-2022, 20:59
Tweet 34/57 π Next tweet π Start
https://aws.amazon.com/blogs/aws/preview-amazon-security-lake-a-purpose-built-customer-owned-data-lake-service/
#reinvent
@marknca tweeted at 01-Dec-2022, 20:59
Tweet 35/57 π Next tweet π Start
more perspectives only make things better
#reinvent
@marknca tweeted at 01-Dec-2022, 21:01
Tweet 36/57 π Next tweet π Start
why? thereβs just too much data that needs protectingβ¦and too much security data that needs to be processed. the only way is automation
#reinvent
@marknca tweeted at 01-Dec-2022, 21:01
Tweet 37/57 π Next tweet π Start
session SEC209, βContinuous innovation in AWS threat detection & monitoring servicesβ covers this in more depth (on the @AWSEvents YouTube channel soon)
#reinvent
@marknca tweeted at 01-Dec-2022, 21:02
Tweet 38/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:03
Tweet 39/57 π Next tweet π Start
blog post on that is available at https://aws.amazon.com/blogs/aws/announcing-aws-kms-external-key-store-xks/
#reinvent
@marknca tweeted at 01-Dec-2022, 21:04
Tweet 40/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:05
Tweet 41/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:05
Tweet 42/57 π Next tweet π Start
blog post: https://aws.amazon.com/blogs/security/get-the-best-out-of-amazon-verified-permissions-by-using-fine-grained-authorization-methods/
product page: https://aws.amazon.com/verified-permissions/
#reinvent
@marknca tweeted at 01-Dec-2022, 21:06
Tweet 43/57 π Next tweet π Start
blog at https://aws.amazon.com/blogs/security/you-can-now-assign-multiple-mfa-devices-in-iam/
#reinvent
@marknca tweeted at 01-Dec-2022, 21:07
Tweet 44/57 π Next tweet π Start
tons of great features/services have come from this push
program page is up at https://aws.amazon.com/security/provable-security/
#reinvent
@marknca tweeted at 01-Dec-2022, 21:08
Tweet 45/57 π Next tweet π Start
blog post: https://aws.amazon.com/about-aws/whats-new/2022/03/aws-kms-acm-support-latest-hybrid-post-quantum-tls-ciphers/
#reinvent
@marknca tweeted at 01-Dec-2022, 21:09
Tweet 46/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:10
Tweet 47/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:11
Tweet 48/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:12
Tweet 49/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:13
Tweet 50/57 π Next tweet π Start
that common understanding makes collaboration a lot easier
if you donβt have it, you can build that culture
#reinvent
@marknca tweeted at 01-Dec-2022, 21:15
Tweet 51/57 π Next tweet π Start
@deneendefiore & @united use regular safety briefings that are already in place
β€οΈπ
#reinvent
@marknca tweeted at 01-Dec-2022, 21:16
Tweet 52/57 π Next tweet π Start
check out and use their solution at https://t.co/TNoUHSzX8i
#reinvent
@marknca tweeted at 01-Dec-2022, 21:18
Tweet 53/57 π Next tweet π Start
- be brilliant at the basics
- advance capabilities as your environment changes (tech/biz/regulatory/etc.)
- enable the business!
#reinvent
@marknca tweeted at 01-Dec-2022, 21:21
Tweet 54/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:24
Tweet 55/57 π Next tweet π Start
if you’re hiring, understand that. yes, it’s more work, but so, so worth it
#reinvent
@marknca tweeted at 01-Dec-2022, 21:25
Tweet 56/57 π Next tweet π Start
#reinvent
@marknca tweeted at 01-Dec-2022, 21:27
Tweet 57/57 π Next tweet π Start
hopefully, he’s now off to get some tea π΅ for his voice
@marknca tweeted at 01-Dec-2022, 21:28