Scaling Security in the Cloud With Open Source

•Als PPTX, PDF herunterladen•

2 gefällt mir•4,273 views

The programmability of the cloud has revolutionized infrastructure deployments at scale and, at the same time, has enabled the automation of both the attack and defense of these deployments. In this talk, I will discuss the open-source tools and the techniques that my organization has used to scale security in the cloud to keep pace with our deployments. I’ll also cover how we’ve used automation to adapt security processes to cloud strategies such as immutable servers. Some topics include: temporal leasing of API access keys and database credentials, automation of patching groups and scans, and automated enforcement of configuration policy.

Technologie

Scaling Security in the Cloud
With Open Source
Cloud Village @ DEF CON 27
James Strassburg
Technical Fellow / Chief Software Architect
Direct Supply

Our Cloud Vision and Strategy
Immutable Servers
Infrastructure as Code
Automated Deployments
Secure by Default
Platform as a Service

No automation A few scripts
DevOps / Continuous
Delivery
EVIL

“Secure, store and tightly control access to tokens, passwords,
certificates, encryption keys for protecting secrets and other
sensitive data using a UI, CLI, or HTTP API.”

● Static Secrets - Key/Value Secrets Engine
● Dynamic Secrets
○ Database Credentials - PostgreSQL Database Secrets Engine
○ AWS Access Keys - AWS Secrets Engine
● SSH One Time Password Secrets Engine
Our use cases...

Cloud Custodian
● Cloud configuration governance
● Automated checking and enforcement
● Policy as code
● Notifications

Security Scanning Automation /
Dealing With Cattle
● Eliminate manual effort to update
scan configurations
● Group instances logically by owner
● Support custom scans based on
tags

What went not so well...
● Lots of work before Custodian deployed
● Teams started rolling their own sans modules
● Our integration with a cloud consultancy is preventing us
from taking advantage of some newer features

Resources
● https://carbon.now.sh/
● https://unsplash.com/
● https://www.vaultproject.io/
● https://cloudcustodian.io/
➢ code formatting
➢ images
➢ HashiCorp Vault
➢ Cloud Custodian
james.strassburg@directsupply.com
@jstrassburg

Weitere ähnliche Inhalte

Was ist angesagt?

Native cloud security monitoring

John Varghese

EKS security best practices

John Varghese

Speaker 1: Ashwin Vamshi Speaker 2: Abhinav Singh Cloud services are built for increased collaboration and productivity, and provide capabilities like auto sync and API level communication. This has led enterprises to exclusively use SaaS, PaaS and IaaS services for storing and sharing critical and confidential data. End users as well as security products tend to place implicit trust in cloud vendors such as Microsoft, AWS, Google, and SaaS app vendors such as Box, Salesforce, DropBox. As a result, cybercriminals have started launching their attacks from these trusted cloud services. This talk will focus on how attackers are abusing these trusted cloud services to create Phishing attacks that are highly effective and hard to detect.

Phishing in the cloud era

CloudVillage

"What happens when attackers start taking advantage of whitelisted APIs as a form of obfuscated command and control? Companies both large and small are moving workloads to the cloud and are very concerned with how to secure their resources which actually live in AWS, GCP, and Azure. However, they don’t address how enabling this access changes their internal attack surface and weakens their defenses. In this talk, we demonstrate that attackers no longer have any reason to rely on conventional CNC, being able to outsource their costs and infrastructure management to the likes of Slack, Github, Pastebin, Dropbox, Google, and social media sites. Using these sorts of techniques, URL blacklisting becomes obsolete, IDS becomes less effective, and attackers no longer have to waste their time writing domain generation algorithms. Specifically, I will demo a proof-of-concept malware which uses multiple SaaS services, social networks, and more conventional “cloud infrastructure” (S3) that would be extremely difficult to mitigate generically with today’s IPS solutions, and we discuss how the same techniques can be used by red teams and attackers to quietly maintain persistence and exfiltrate data."

Your Blacklist is Dead: Why the Future of Command and Control is the Cloud

CloudVillage

Defcon 27 - Exploiting IAM in GCP

Netskope

Protecting serverless is a new topic. This presentation aims at showing what new security challenges it brings, and how CISO and security teams should approach it. The serverless space evolves fast and there is no convergence on best practices yet. The switch to a serverless architecture involves several changes, for instance developers doing much more ops with serverless, deploying 20 times more services than previously...

Serverless security - how to protect what you don't see?

Sqreen

Securing aws workloads with embedded application security

John Varghese

Practical Guide to Securing Kubernetes

Lacework

How Serverless Computing Enables Microservices and Micropayment

Amazon Web Services

AWS Security Strategy

Teri Radichel

Customers are challenged today by a constant struggle between velocity and governance. What they want is consistent, secure, and scalable software deployments, but their security teams also need to be able to identify possible issues early in the development process to allow for proactive modification to the deployment process to ensure compliance in the cloud. Join us for a webinar on “Securing AWS Deployments with Spinnaker and Armory Enterprise” to learn: How to experiment while still enforcing deployment policies How to build reusable modules that reduce the number of stages needed for deployment How lockable pipelines enforce continuous delivery to release orchestration best practices

Securing your AWS Deployments with Spinnaker and Armory Enterprise

DevOps.com

Speaker: Cheryl Biswas Cloud. It's the land of opportunity. Enterprises are doing mass migrations from older and legacy systems to harness greater power and efficiency from innovative new tech. Following that money trail are opportunistic attackers, seeking the computing strength and near-invisibility afforded by enterprise cloud environments to mine bitcoin. Cryptominers are everywhere. And yes, Virginia, they are in the Cloud. These nebulous power-rich realms let attackers set up mining rigs to feast on enterprise resources, while flying below the detection of cloud or conventional security resources. The concern here is that once attackers gain access to our networks, they can pivot and move laterally, to find even greater reward in the vast amounts of data available.

Mining Malevolence: Cryptominers in the Cloud

CloudVillage

AWS Enterprise Summit Netherlands - AWS IoT

Amazon Web Services

Policy as code what helm developers need to know about security

LibbySchulze

Leveraging AWS for your business provides a catalyst for security programs as customers inherit a faster pace of security innovation simply by using AWS. This session highlights design and architecture patterns customers can employ to measurably improve the security of their organization. In this session, customers explore design patterns for data security using encryption, strong access controls, and least privilege; for implementing detective security controls, such as logging and monitoring, at scale; and for implementing a defense-in-depth network security architecture.

Architecting for Greater Security on AWS

Amazon Web Services

In this session, you’ll learn how to setup your AWS environment to avoid a cyber security attack and how to build a cloud specific incident response plan if your organization is breached. Cyber security expert and founder of Alert Logic Misha Govshteyn will share lessons learned from organizations that have protected themselves in AWS and from those that have been breached but quickly resolved their issues and implemented strong controls as a result. Joining Misha will be Sven Skoog, Senior Manager IT Security at Monotype who will discuss the cyber security posture they implemented within the AWS cloud and how they have built a robust process to ensure ongoing protection. Session sponsored by Alert Logic. AWS Competency Partner

AWS re:Invent 2016: Cyber Resiliency – surviving the breach (SAC321)

Amazon Web Services

Grabbing Forensic Images from EC2/Rackspace

JP Bourget

Cloud Security At Netflix, October 2013

Jay Zarfoss

Automating Event Driven Security in the AWS Cloud

Amazon Web Services

AWS provides all sorts of security features and capabilities, and these features generate tons of data to be sifted and analyzed. In this session, hear what we are doing to support ingestion, processing, and storage of data at scale to support our Security Science and DevSecOps programs. We've had a lot of experience understanding what is and is not possible for crunching security data using big data environments. In fact, we've discovered it's much easier to develop the tools and processes necessary to support applications than you might think.

(SEC326) Security Science Using Big Data

Amazon Web Services

Was ist angesagt? (20)

Native cloud security monitoring

EKS security best practices

Phishing in the cloud era

Your Blacklist is Dead: Why the Future of Command and Control is the Cloud

Defcon 27 - Exploiting IAM in GCP

Serverless security - how to protect what you don't see?

Securing aws workloads with embedded application security

Practical Guide to Securing Kubernetes

How Serverless Computing Enables Microservices and Micropayment

AWS Security Strategy

Securing your AWS Deployments with Spinnaker and Armory Enterprise

Mining Malevolence: Cryptominers in the Cloud

AWS Enterprise Summit Netherlands - AWS IoT

Policy as code what helm developers need to know about security

Architecting for Greater Security on AWS

AWS re:Invent 2016: Cyber Resiliency – surviving the breach (SAC321)

Grabbing Forensic Images from EC2/Rackspace

Cloud Security At Netflix, October 2013

Automating Event Driven Security in the AWS Cloud

(SEC326) Security Science Using Big Data

Ähnlich wie Scaling Security in the Cloud With Open Source

Compliance In The Cloud Using Security By Design

Amazon Web Services

Getting Started With AWS Security

Amazon Web Services

This session will discuss the options available for encrypting data at rest and key management in AWS. It will focus on two primary scenarios: (1) AWS manages encryption keys on behalf of the customer to provide automated server-side encryption; (2) the customer manages their own encryption keys using partner solutions and/or AWS CloudHSM. Real-world customer examples will be presented to demonstrate adoption drivers of specific encryption technologies in AWS. Netflix Jason Chan will provide an overview of how NetFlix uses CloudHSM for secure key storage.

Encryption and key management in AWS (SEC304) | AWS re:Invent 2013

Amazon Web Services

1. aws security and compliance wwps pre-day sao paolo - markry

Amazon Web Services LATAM

You automated your deployment, elasticized your workloads, and dynamically provisioned your fleet. What do you do next? Tackle automating your security needs using the latest capabilities in the cloud! There’s no single path to building an automated and continuous security architecture that works for every organization, but certain key principles and techniques are used by the early adopter cloud elite that give them distinct advantages. It's time to re-think your organization’s processes and behaviors to demonstrate the latest efficiencies in your security operations. In this webinar, learn how Intuit implements cloud security automation with Evident.io and other innovative cloud technologies. This slide deck covers: - How security will be integrated into the overall processes of development and deployment. - How to tie security acceptance tests, a subset of your key security controls, right into the end of your functional testing process to promote builds with confidence at greater speed. - How to be successful with API-enabled, continuous security tools in the cloud. - How to operationalize security alarms, enabling world-class incident response and remediation capabilities.

Automating your AWS Security Operations

Evident.io

You automated your deployment, elasticized your workloads, and dynamically provisioned your fleet. What do you do next? Tackle automating your security needs using the latest capabilities in the cloud! There’s no single path to building an automated and continuous security architecture that works for every organization, but certain key principles and techniques are used by the early adopter cloud elite that give them distinct advantages. It's time to re-think your organization’s processes and behaviors to demonstrate the latest efficiencies in your security operations. In this webinar, learn how Intuit implements cloud security automation with Evident.io and other innovative cloud technologies. Join us to learn: • How security will be integrated into the overall processes of development and deployment. • How to tie security acceptance tests, a subset of your key security controls, right into the end of your functional testing process to promote builds with confidence at greater speed. • How to be successful with API-enabled, continuous security tools in the cloud. • How to operationalize security alarms, enabling world-class incident response and remediation capabilities.

Automating your AWS Security Operations

Amazon Web Services

Keepler | Full-Stack Serverless Applications on GCP

Keepler Data Tech

How to leverage Evident Security Platform for DFARS-NIST 800-171 AWS Accounts

Sebastian Taphanel CISSP-ISSEP

Security in the cloud Workshop HSTC 2014

Akash Mahajan

Cloud computing transforms the way we can store, process and share our data. New applications and workloads are growing rapidly, which brings every day more sensitive data into the conversation about risk and what constitutes natural targets for bad actors. This presentation reflects on current best practices to address the most significant security concerns for sensitive data in the cloud, and offers participants a list of steps to achieve enterprise-grade safety with MongoDB deployments among the expanding service provider options.

Enterprise Cloud Security

MongoDB

Up-front design of your AWS account can be done in a way that creates a reliably secure and controlled environment no matter how the AWS resources are used. This session will focus on "Secure by Design" principles and show how an AWS environment can be configured to provide a reliable operational security control capability to meet the compliance needs across multiple industry verticals (e.g. HIPAA, FISMA, PCI, etc.). This will include operational reporting through the use of AWS services (e.g. Config/Config Rules, CloudTrail, Inspector, etc.) as well as partner integration capabilities with partner solutions such as Splunk and Allgress for real-time governance, risk, and compliance reporting. Key takeaways from this session include: learning AWS Security best practices and automation capabilities for securing your environment, Automation accelerators for configuration, compliance, and audit reporting using CloudFormation, Config/Config Rules, CloudTrail, Inspector, etc., and ISV integration for real-time notification and reporting for security, compliance, and auditing in the cloud.

Compliance in the Cloud Using Security by Design

Amazon Web Services

Building Scalable Data Ingestion

Michael Pearce

We’ve entered a new connectivity oriented world where we can access information any time, any place, on any device, 24 hours a day, and cloud computing is a major enabler of this flexibility. Like you, more and more businesses are looking to the cloud for better, faster, more powerful and affordable communications and while many would think that security in the cloud is much different, the reality is less dramatic. Moving to the cloud still requires using proven security techniques, but sometimes in new and dynamic ways that adapt to the elastic nature of cloud architecture. Join us as we discuss the latest cloud security solutions, including real world examples of how organizations like yours are succeeding against new and evolving threats. We will examine security considerations beyond what is provided by security-conscious cloud providers like Amazon Web Services and what additional factors you might want to think about when deploying to the cloud.

AWS Summit 2013 | Singapore - Security & Compliance and Integrated Security w...

Amazon Web Services

Blue Chip Tek Connect and Protect Presentation #3

Kimberly Macias

Wer seine IT-Projekte in die Cloud bringen möchte, muss auf ein paar Fallstricke achten. Herausforderungen finden Sie vor allem im Bereich der Sicherheit. Ihre Daten müssen vor dem Zugriff Unberechtigter absolut sicher sein. Trotzdem muss das Zugriffsmanagement für Ihre Mitarbeiter gut funktionieren. Zu diesen technischen Aufgaben kommen handfeste Vorgaben aus Ihren betrieblichen Richtlinien sowie wichtige gesetzliche Auflagen hinzu. Diese Compliance-Fragen sollten Sie unbedingt kennen und zuverlässig erfüllen. Denn nur, wenn Sie alle Compliance-Vorgaben korrekt einhalten, kann Ihr Cloud-Projekt ein voller Erfolg werden.

Warum ist Cloud-Sicherheit und Compliance wichtig?

AWS Germany

This webinar will introduce the AWS Shared Security Model. We will examine how to use the inherent security of the AWS environment, coupled with the security tools and features AWS makes available, to create a resilient environment with the security you need. Learning Objectives: • Understand the security measures AWS puts in place to secure the environment where your data lives • Understand the tools AWS offers to help you create a resilient environment with the security you need • Consider actions when moving a sensitive workload to AWS • Security benefits you can expect by deploying in the AWS Cloud Who Should Attend: - Prospects and customers with a security background - Who are interested in using AWS to manage security-sensitive workloads

AWS Webcast - Understanding the AWS Security Model

Amazon Web Services

Availability of cloud computing is helping Financial Services organizations realize accelerated go-to-market speeds, global scalability, and cost efficiencies. This new world forces considerations for security programs – what is different in the cloud and what do I do differently? AWS Security Architects will share protocols that need to be considered in the cloud, on premises, or in a hybrid model. They will also share best practices, lessons learned, efficiencies, and design patterns and architectures unique to cloud.

An Evolving Security Landscape – Security Patterns in the Cloud

Amazon Web Services

AWS Summit Auckland - Introducing Well-Architected for Developers

Amazon Web Services

AWS Security and SecOps

Shiva Narayanaswamy

NVS_Sentinel

Mike Mihm

Ähnlich wie Scaling Security in the Cloud With Open Source (20)

Compliance In The Cloud Using Security By Design

Getting Started With AWS Security

Encryption and key management in AWS (SEC304) | AWS re:Invent 2013

1. aws security and compliance wwps pre-day sao paolo - markry

Automating your AWS Security Operations

Keepler | Full-Stack Serverless Applications on GCP

How to leverage Evident Security Platform for DFARS-NIST 800-171 AWS Accounts

Security in the cloud Workshop HSTC 2014

Enterprise Cloud Security

Compliance in the Cloud Using Security by Design

Building Scalable Data Ingestion

AWS Summit 2013 | Singapore - Security & Compliance and Integrated Security w...

Blue Chip Tek Connect and Protect Presentation #3

Warum ist Cloud-Sicherheit und Compliance wichtig?

AWS Webcast - Understanding the AWS Security Model

An Evolving Security Landscape – Security Patterns in the Cloud

AWS Summit Auckland - Introducing Well-Architected for Developers

AWS Security and SecOps

NVS_Sentinel

Kürzlich hochgeladen

Angeliki Cooney has spent over twenty years at the forefront of the life sciences industry, working out of Wynantskill, NY. She is highly regarded for her dedication to advancing the development and accessibility of innovative treatments for chronic diseases, rare disorders, and cancer. Her professional journey has centered on strategic consulting for biopharmaceutical companies, facilitating digital transformation, enhancing omnichannel engagement, and refining strategic commercial practices. Angeliki's innovative contributions include pioneering several software-as-a-service (SaaS) products for the life sciences sector, earning her three patents. As the Senior Vice President of Life Sciences at Avenga, Angeliki orchestrated the firm's strategic entry into the U.S. market. Avenga, a renowned digital engineering and consulting firm, partners with significant entities in the pharmaceutical and biotechnology fields. Her leadership was instrumental in expanding Avenga's client base and establishing its presence in the competitive U.S. market.

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Angeliki Cooney

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Corporate and higher education. Two industries that, in the past, have had a clear divide with very little crossover. The difference in goals, learning styles and objectives paved the way for differing learning technologies platforms to evolve. Now, those stark lines are blurring as both sides are discovering they have content that’s relevant to the other. Join Tammy Rutherford as she walks through the pros and cons of corporate and higher ed collaborating. And the challenges of these different technology platforms working together for a brighter future.

Corporate and higher education May webinar.pptx

Rustici Software

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

💥 You’re lucky! We’ve found two different (lead) developers that are willing to share their valuable lessons learned about using UiPath Document Understanding! Based on recent implementations in appealing use cases at Partou and SPIE. Don’t expect fancy videos or slide decks, but real and practical experiences that will help you with your own implementations. 📕 Topics that will be addressed: • Training the ML-model by humans: do or don't? • Rule-based versus AI extractors • Tips for finding use cases • How to start 👨‍🏫👨‍💻 Speakers: o Dion Morskieft, RPA Product Owner @Partou o Jack Klein-Schiphorst, Automation Developer @Tacstone Technology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

UiPathCommunity

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

The action of the next cyber saga takes place in the mystical lands of the Asia-Pacific region, where the main characters began their digital activities in the middle of 2021 and qualitatively strengthened it in 2022. Corporate espionage, document theft, audio recordings, and data leaks from messaging platforms were all a matter of one day for Dark Pink. Their geographical focus may have started in the Asia-Pacific region, but their ambitions knew no bounds, targeting a European government ministry in a bold move to expand their portfolio. Their victim profile was as diverse as a UN meeting, targeting military organizations, government agencies, and even a religious organization. Because discrimination is not a fashionable agenda. In the world of cybercrime, they serve as a reminder that sometimes the most serious threats come in the most unassuming packages with a pink bow.

Cyberprint. Dark Pink Apt Group [EN].pdf

Overkill Security

ICT role in 21st century education and its challenges

rafiqahmad00786416

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Kürzlich hochgeladen (20)

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

How to Troubleshoot Apps for the Modern Connected Worker

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Corporate and higher education May webinar.pptx

Strategies for Landing an Oracle DBA Job as a Fresher

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Cyberprint. Dark Pink Apt Group [EN].pdf

ICT role in 21st century education and its challenges

Apidays New York 2024 - The value of a flexible API Management solution for O...

AXA XL - Insurer Innovation Award Americas 2024

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

Why Teams call analytics are critical to your entire business

Artificial Intelligence Chap.5 : Uncertainty

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Scaling Security in the Cloud With Open Source

1. Scaling Security in the Cloud With Open Source Cloud Village @ DEF CON 27 James Strassburg Technical Fellow / Chief Software Architect Direct Supply

4. Our Cloud Vision and Strategy Immutable Servers Infrastructure as Code Automated Deployments Secure by Default Platform as a Service

5. No automation A few scripts DevOps / Continuous Delivery EVIL

7. What happened?

8. How can we do more with less?

9. “Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.”

10. ● Static Secrets - Key/Value Secrets Engine ● Dynamic Secrets ○ Database Credentials - PostgreSQL Database Secrets Engine ○ AWS Access Keys - AWS Secrets Engine ● SSH One Time Password Secrets Engine Our use cases...

11. Authentication

12. Key/Value Secrets Engine

13. PostgreSQL Database Secrets Engine

14. AWS Secrets Engine

15. SSH One Time Password Secrets Engine

16. Cloud Custodian ● Cloud configuration governance ● Automated checking and enforcement ● Policy as code ● Notifications

17. Cloud Custodian - Example Policy

18. Cloud Custodian - Notifications

19. Security Scanning Automation / Dealing With Cattle ● Eliminate manual effort to update scan configurations ● Group instances logically by owner ● Support custom scans based on tags

20. Scanner Based Scanning

21. Agent Based Scanning

22. Secure by Default

23.

24.

25. What went not so well... ● Lots of work before Custodian deployed ● Teams started rolling their own sans modules ● Our integration with a cloud consultancy is preventing us from taking advantage of some newer features

26. Resources ● https://carbon.now.sh/ ● https://unsplash.com/ ● https://www.vaultproject.io/ ● https://cloudcustodian.io/ ➢ code formatting ➢ images ➢ HashiCorp Vault ➢ Cloud Custodian james.strassburg@directsupply.com @jstrassburg

Hinweis der Redaktion

Since 1985, Direct Supply has been committed to enhancing the lives of seniors and those who care for them. We help Senior Living providers create amazing environments, improve care and outcomes, optimize building operations, streamline procurement and more.
-method=AWS for IAM auth
Note the filters and actions, taking a less-heavy handed approach where we can
We’re using Custodian for lots more including deregistering old AMI’s, whitelisting AWS services, and adding a security group for patching to running ec2 instances… which leads me to...
All driven by tags on the scanner and the instances pyTenable
Tenable agent is baked into our base Linux/Windows cookbooks/images Automation is, again, driven by tags. The relevant tags are included in a tagging module
When given a new technology, developers will first look for examples to copy. We tried to ensure the first things they found were correct.
AWS Organizations, control tower

Scaling Security in the Cloud With Open Source

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Was ist angesagt?

Was ist angesagt? (20)

Ähnlich wie Scaling Security in the Cloud With Open Source

Ähnlich wie Scaling Security in the Cloud With Open Source (20)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

Scaling Security in the Cloud With Open Source

Hinweis der Redaktion