Securing DevOps in AWS
One of the leading concerns businesses have for adopting a cloud-first mentality centers on security. This presentation will discuss a range of practices, policies and tools designed to decrease your security surface area. We will discuss adding security testing to Continuous Delivery pipelines via tests and build plugins, checklists for building container-based artifacts, VPN & VPC configurations, Multifactor Authentication, IAM & Role appropriations, enforcing encrypted traffic using security groups and automating security patching. Attendees will walk away with a better understanding of where risks exist for projects, a starting checklist on how to start secure projects within AWS and a solid outline on how to incorporate security into your build pipelines.
Goals of this presentation include:
- Securing your AWS account and environments
- Adding security through automated tests and tools
- Processes adding to a “first to know” policy
Presented by Mike Ensor, VP of Delivery at Dev9
Mike Ensor is a hands-on software architect with 20 years of experience in backend development, e-commerce, Cloud architectures, distributed systems and big data implementations. Throughout his career he has continually pushed the use of test-driven development and emphasized the merits of Agile-based development.
4 Steps to Gain
Optimal Value in the Cloud
By Gabe Hicks, Dev9 CTO
How do you enable applications to best use the Cloud? It is true that nearly any application can be moved to the Cloud without much change. This is the premise behind the concept of the “lift & shift.” Moving to the cloud can be the same as moving to any virtualized environment. If the Cloud is just another virtualized environment, there is not much interesting about moving to it.