-
Notifications
You must be signed in to change notification settings - Fork 18
Home
Paul Duvall edited this page Nov 30, 2020
·
72 revisions
Welcome to the Continuous Security on AWS Workshop.
A list of the demos for the Continuous Security on AWS LiveLessons course.
| Category | Example |
|---|---|
| Lesson 1: Common Tools | Integrating AWS CloudFormation Guard into CI/CD pipelines |
| Lesson 2: Identity and Access Management | Unit testing IAM policies across multiple accounts |
| Lesson 3: Detection & Incident Response | Integrating AWS CloudFormation security tests with AWS Security Hub and AWS CodeBuild reports |
| Lesson 4: Infrastructure Protection | Automate AWS Firewall Manager onboarding using AWS Centralized WAF and VPC Security Group Management solution |
| Lesson 5: Data Protection | Serving SSE-KMS encrypted content from S3 using CloudFront |
| Lesson 6: Compliance | Standardized Architecture for PCI DSS Compliance on AWS |
| Lesson 7: Container Security | Container DevSecOps with AWS CodePipeline using Hadolint and Anchore Engine |
A list of the demos for the Continuous Security on AWS LiveLessons course.
| Category | Example |
|---|
| Document | Description |
|---|---|
| AWS Solutions | AWS-vetted solutions launched via CloudFormation |
| AWS Labs | AWS Labs solutions on GitHub (often associated with AWS blog posts) |
| AWS Quick Start | Quick Start Solutions on AWS launched via CloudFormation |
| AWS Security Documentation | Security Documentation for each AWS Service |
| AWS Serverless Application Repository | Access Serverless Applications published by AWS and Community |
| AWS Well-Architected Framework | AWS Well-Architected Framework Documentation |
| Security Pillar | The Security Pillar of the AWS Well-Architected Framework |
| Tool | Description |
|---|---|
| git-secrets | Prevents you from committing secrets and credentials into git repositories |
| ecs-secrets | Runtime secrets management solution for ECS using Task IAM Roles |
- Unit testing IAM policies across multiple accounts
- Automate account creation, and resource provisioning using AWS Service Catalog, AWS Organizations, and AWS Lambda
- Managing AWS Organizations using the open source org-formation tool — Part 3
- Automated Response and Remediation with AWS Security Hub
- How to deploy the AWS Solution for Security Hub Automated Response and Remediation
- Enabling AWS Security Hub integration with AWS Chatbot
- Orchestrating a security incident response with AWS Step Functions
- Automate AWS Firewall Manager onboarding using AWS Centralized WAF and VPC Security Group Management solution
- Defense in depth using AWS Managed Rules for AWS WAF (part 1), Defense in depth using AWS Managed Rules for AWS WAF (part 2)
- How to use AWS Certificate Manager with AWS CloudFormation
- Solution: AWS WAF Security Automations