This SkillsCast is currently only available to registered attendees of μCon: The Microservices eXchange
It will be freely available to all Skills Matter members once the μCon: The Microservices eXchange early-access window expires on June 13, 2021.
An event-driven architecture uses events to trigger targets and communicate between decoupled services to achieve massive scale and flexibility.
This architectural pattern can also be applied to security as code. When applying this event-driven security architecture pattern, you can automatically detect security devitations and trigger automated security remediations. This security infrastructure can be defined as code and deployed as part of a continuous delivery pipeline.
In this session, Paul Duvall, a founder and former CTO of an AWS Premier Consulting Provider and an AWS DevTools Hero, will discuss and demonstrate scalable architectures that integrate Amazon EventBridge, AWS Config Rules, AWS Lambda, AWS Systems Manager, and AWS Step Functions to detect and remediate security deviations across an AWS environment. What’s more, you will see how to automate the deployment pipeline that provisions these security resources as code.
YOU MAY ALSO LIKE:
- Advanced Kubernetes Concepts with Jérôme Petazzoni (Online Course on 7th - 10th June 2021)
- Better Software Faster with Dave Farley (Online Course on 12th - 13th July 2021)
- LDN *Virtual* Talks May 2021 (Online Meetup on 27th May 2021)
- How to Simplify Parsing with Genie Dq (SkillsCast recorded in April 2021)
- How I save myself 30+ minutes a day as a Network Engineer using Ansible (SkillsCast recorded in April 2021)
Event-Driven Security Detection and Remediation as Code
Paul Duvall is a founder and former CTO of an AWS Premier Consulting Provider with the DevOps and Security Competencies. He holds multiple AWS certifications and has architected, implemented, and managed software and systems solutions for over 20 years. He is principal author of Continuous Integration: Improving Software Quality and Reducing Risk (Addison-Wesley, 2007), a 2008 Jolt Award Winner.
He is also the author of many other publications including Continuous Compliance on AWS and Continuous Encryption on AWS, and Continuous Security on AWS which are part of Addison-Wesley's DevSecOps on AWS Series. He hosted the DevOps on AWS Radio podcast for over three years.
He enjoys blogging and speaking on all topics related to DevSecOps, Serverless, and AWS.