Download - Improve Governance over Configuration Changes

Transcript
Page 1: Improve Governance over Configuration Changes

Improve Governance Over Configuration Changes

Liron Dor, Technical Account Manager

Page 2: Improve Governance over Configuration Changes

Governance Requirements

• Allow our organization to move fast

• Visibility over used resources

• Define Best Practices and enforce them

• Meet Compliance and Regulations

• Validate compliance continuously

• Alerting and Auto-healing

• Automatic control over Manual control

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 3: Improve Governance over Configuration Changes

Governance Challenges

• Dynamic environments

• High complexity

• Different requirements for different environments

• Multiple Accounts

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 4: Improve Governance over Configuration Changes

Tools We Offer• Tracking

• AWS Config

• AWS CloudTrail

• VPC Flow Logs

• Amazon Inspector

• Track / Log

• Amazon CloudWatch Logs

• Amazon DynamoDB

• Amazon ElasticSearch

• Alert

• AWS Config Rules

• Amazon Simple Notification Service (SNS)

• AWS Trusted Advisor

• Amazon CloudWatch Events

• And More…

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 5: Improve Governance over Configuration Changes

AWS Config

• Records configuration changes continuously

• Capturing the state of your AWS resources

• “Configuration Item” contains all attributes for a resource

• Capturing the relationship between resources

• Discover resources that exists or deleted

• Receive notifications on configuration changes

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 6: Improve Governance over Configuration Changes

AWS Config Rules

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 7: Improve Governance over Configuration Changes

AWS Config Rules

• Validate configuration record

• Enforce Best Practices and procedures

• Result is either “compliant” or “non-compliant”

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 8: Improve Governance over Configuration Changes

AWS Config Rules Demo

• “Center of Internet Security” (CIS) is a Non Profit organization dedicated to enhancing the cybersecurity readiness and response among public and private sector entities.

• Published “CIS AWS Foundations” Security Best Practices document

• AWS Config Rules Repository

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf
https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf
https://github.com/awslabs/aws-config-rules
Page 9: Improve Governance over Configuration Changes

Demo

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 10: Improve Governance over Configuration Changes

Summary

• Allow our organization to move fast

• Know your account, wanted and unwanted changes

• Automate your best practices / compliance metrics

• Use Logs for forensic, Alerts for immediate actions

© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved

Page 11: Improve Governance over Configuration Changes
Page 12: Improve Governance over Configuration Changes

[email protected]


Top Related

6. Can participatory governance improve the quality of democracy… · HHEINELT PRINT.indd 94EINELT PRINT.indd 94 003/01/2018 10:443/01/2018 10:44 Can participatory governance improve

6. Can participatory governance improve the quality of democracy… · HHEINELT PRINT.indd 94EINELT PRINT.indd 94 003/01/2018 10:443/01/2018 10:44 Can participatory governance improve

MDG102 Master Data Governance Configuration mdg102 pdf

MDG102 Master Data Governance Configuration mdg102 pdf

Audit Committee, 10 June 2020 Information Governance ......Information Governance . 5.1 During the reporting period the Information Governance team continued to develop and improve

Audit Committee, 10 June 2020 Information Governance ......Information Governance . 5.1 During the reporting period the Information Governance team continued to develop and improve

CSB Needs to Continue to Improve Agency Governance … · CSB Needs to Continue to Improve Agency Governance and Operations ... Have documentation supporting its decisions to ...

CSB Needs to Continue to Improve Agency Governance … · CSB Needs to Continue to Improve Agency Governance and Operations ... Have documentation supporting its decisions to ...

Report No. 66 Social research to improve groundwater governance… · 2013. 10. 18. · Social research to improve groundwater governance: literature review . Michael Mitchell . 1,

Report No. 66 Social research to improve groundwater governance… · 2013. 10. 18. · Social research to improve groundwater governance: literature review . Michael Mitchell . 1,

How to Improve Your Digital Governance

How to Improve Your Digital Governance

INTERNAL AUDIT ESSENTIAL TO IMPROVE GOVERNANCE ENG4mail-1.pdf · the third conference on internal auditing in montenegro internal audit essential to improve governance - searching

INTERNAL AUDIT ESSENTIAL TO IMPROVE GOVERNANCE ENG4mail-1.pdf · the third conference on internal auditing in montenegro internal audit essential to improve governance - searching

How to improve the quality of institutions and governance at the ...€¦ · How to improve the quality of institutions and governance at the country level Bo Rothstein The Quality

How to improve the quality of institutions and governance at the ...€¦ · How to improve the quality of institutions and governance at the country level Bo Rothstein The Quality

Languages
Pages
Legal

Copyright © 2022 FDOCUMENTS