Diese Präsentation wurde erfolgreich gemeldet.
Wir verwenden Ihre LinkedIn Profilangaben und Informationen zu Ihren Aktivitäten, um Anzeigen zu personalisieren und Ihnen relevantere Inhalte anzuzeigen. Sie können Ihre Anzeigeneinstellungen jederzeit ändern.

Security Day - Intro

3.194 Aufrufe

Veröffentlicht am

Security Day - Intro

Veröffentlicht in: Business
  • Als Erste(r) kommentieren

Security Day - Intro

  1. 1. AWS Security Day Welcome
  2. 2. 9:00 Welcome & Keynote 9:30 The AWS Shared Security Responsibility Model in Practice 10:10 FIRE ALARM TEST 10:20 Break 10:45 IAM Best Practices 11:30 Encryption Options on AWS 12:30 Lunch 13:30 AWS Logging, Analysis and Alerting 14:30 Account Separation and Mandatory Access Control 15:30 What’s New: Web Application Firewall, Config Rules, Inspector 16:30 Q &A + Close Today’s Session Plan
  3. 3. Feedback. It’s really important to us #AWS #SecurityDay
  4. 4. AWS Security Day Intro Ian Massingham AWS Technology Evangelist @IanMmmm ianm@amazon.com
  5. 5. Over 1 Million Active Customers “Active customer” is defined as a non-Amazon customer with AWS account usage activity in the past month, including the free tier 2008 2009 2010 2011 2012 2013 20152014
  6. 6. Startup Customers http://aws.amazon.com/solutions/case-studies/ Meerkat
  7. 7. Enterprise Customers http://aws.amazon.com/solutions/case-studies/
  8. 8. ISV Partners http://aws.amazon.com/solutions/case-studies/
  9. 9. Gartner “Magic Quadrant for Cloud Infrastructure as a Service,” Lydia Leong, Douglas Toombs, Bob Gill, Gregor Petri, Tiny Haynes, May 28, 2014. This Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the enMre report. The Gartner report is available at hNp://aws.amazon.com/resources/analyst- reports/. Gartner does not endorse any vendor, product or service depicted in its research publicaMons, and does not advise technology users to select only those vendors with the highest raMngs. Gartner research publicaMons consist of the opinions of Gartner's research organizaMon and should not be construed as statements of fact. Gartner disclaims all warranMes, expressed or implied, with respect to this research, including any warranMes of merchantability or fitness for a parMcular purpose. Gartner Magic Quadrant Cloud Infrastructure as a Service
  10. 10. Cloud Has Become The New Normal
  11. 11. What Are The Patterns Of This New Normal?
  12. 12. Start-ups Build Businesses From Scratch In The Cloud 1
  13. 13. No legacy Lower cost structureNo dependencies S Move quickly Building All Applications In The Cloud
  14. 14. Disrupt Long Standing Industries, Quickly Hotels Storage Gaming Collaboration Matchmaking
  15. 15. Speed Is Not Just For Start-ups: 
 Companies of All Sizes Move Faster Than Ever Before 2
  16. 16. It’s Impossible To Stay Competitive Today Without The Cloud
  17. 17. In The Old Days… Spend millions for expensive, inflexible, slow-moving infrastructure that is #FrozenInTime
  18. 18. Old World Large upfront capital investment Basic compute and storage only Responsible for feature upgrades Slow to get new capabilities Low, variable cost Broad and deep platform New features arrive daily Ready to use
  19. 19. Enterprises Are Using The Cloud For New Apps & Digital Transformation StatCast App platform Healthcare E-commerce Digital Personal Finance Web Digital content
  20. 20. Customers Want Access To The Sunday Roast with all the Trimmings 3
  21. 21. Key Components Of Agility + = Quick to provision Don’t have to reinvent the wheel Vast infrastructure technology platform
  22. 22. Vast Infrastructure Technology Platform Regions Availability Zones Points of Presence INFRASTRUCTURE CORE SERVICES Compute VMs, Auto-scaling, & Load Balancing Storage Object, Blocks, Archivals, Import/Export Databases Relational, NoSQL, Caching, Migration Networking VPC, DX, DNS CDN
  23. 23. Vast Infrastructure Technology Platform ENTERPRISE APPS DEVELOPMENT & OPERATIONSMOBILE SERVICESAPP SERVICESANALYTICS Data Warehousing Hadoop/ Spark Streaming Data Collection Machine Learning Elastic Search Virtual Desktops Sharing & Collaboration Corporate Email Backup Queuing & Notifications Workflow Search Email Transcoding One-click App Deployment Identity Sync Single Integrated Console Push Notifications DevOps Resource Management Application Lifecycle Management Containers Triggers Resource Templates TECHNICAL & BUSINESS SUPPORT Account Management Support Professional Services Training & Certification Security & Pricing Reports Partner Ecosystem Solutions Architects MARKETPLACE Business Apps Business Intelligence DatabasesDevOps Tools NetworkingSecurity Storage Access Control Identity Management Key Management & Storage Monitoring & Logs Assessment & Reporting Resource & Usage Auditing SECURITY & COMPLIANCE Configuration Compliance Web Application Firewall HYBRID ARCHITECTURE Data Backups Integrated App Deployments Direct Connect Identity Federation Integrated Resource Management Integrated Networking API Gateway IoT Rules Engine Device Shadows Device SDKs Registry Device Gateway Streaming Data Analysis Business Intelligence Mobile Analytics Regions Availability Zones Points of Presence INFRASTRUCTURE CORE SERVICES Compute VMs, Auto-scaling, & Load Balancing Storage Object, Blocks, Archivals, Import/Export Databases Relational, NoSQL, Caching, Migration Networking VPC, DX, DNS CDN
  24. 24. Expansive Services With Depth of Functionality Compute Databases Encryption Access Control General Purpose (M4) Compute Optimized (C4) Memory Optimized (R3) High Memory (X1) GPU Optimized (G2) Storage Optimized (D2) IO Optimized (I2) Low Cost, Burst-able Performance (T2) Dedicated Instances RDS For MySQL RDS For SQL Server RDS For Oracle RDS For PostgreSQL RDS For MariaDB RDS For Amazon Aurora Multi-AZ Synchronous Replication Read Replica Support Server-side Object Encryption Customer Controlled Keys Dedicated HSMs Integrated Key Management Key Usage Auditing Identity Policies Location Policies Time-based Policies Individual API Calls Key Rotation Temporary Credentials Policy Simulator
  25. 25. AWS Rapid Pace Of Innovation 722 major new features and services launched in 2014 2009 48 159 722 82 2011 2013 2015
  26. 26. Invention Is Continuous 4
  27. 27. For Example, Consider Compute… m1.small General Purpose (M3) Compute Optimized (C4) Memory Optimized (R3) GPU Optimized (G2) Storage Optimized (D2) IO Optimized (I2) Low cost, burst-able performance (T2) New
  28. 28. Building With Smaller Blocks Quicker to build Lower costEasier to adapt and update </> </></>
  29. 29. Shrinking Compute To Atomic Scale With AWS Lambda
  30. 30. AWS Lambda: An Event Driven Computing Service Events from AWS services Cloud Functions in Node.js Automatic execution with no servers to provision
  31. 31. How Are Customers Using AWS Lambda? Data triggers Stream processing Indexing & synchronization 1 10 0 11 1 1 1 0 0 0 0 0 1 10 0 11 1 1 1 0 0 0 0 01 10 0 11 1 1 1 0 0 0 0 0 1 10 0 11 1 1 1 0 0 0 0 0 IoT Server-free back-end
  32. 32. us-west-2 ELB ELB Bidders Ad Servers us-east-1 ELB ELB Bidders Ad Servers eu-west-1 ELB ELB Bidders Ad Servers ap-southeast-1 ELB ELB Bidders Ad Servers ap-northeast-1 ELB ELB Bidders Ad Servers Kinesis S3 60B Events/ Day 600k Files/ Day SQS SQS SQS SQS Machine Learning Analytics Dynamic Creatives Profiles DynamoDB us-west-2 DynamoDB us-east-1 DynamoDB eu-west-1 DynamoDB ap-southeast-1 DynamoDB ap-northeast-1
  33. 33. Learning more about AWS
  34. 34. aws.amazon.com/blogs/aws aws.amazon.com/new @AWScloud @AWS_UKI
  35. 35. Let’s Get Started @IanMmmm ianm@amazon.com Ian Massingham AWS Technology Evangelist

×