Screaming in the Cloud

Best Practices for Securing AWS Cloud with Eric Carter

Nov 27, 2024

Eric Carter, Director of Product Marketing at Sysdig, dives into the fast-paced world of AWS cloud security. He discusses the significance of real-time threat detection against evolving attacks and the critical role of automation alongside human oversight. Tools like Falco and Runtime Insights are highlighted for their ability to detect misconfigurations and stealthy threats. Eric introduces a '10-minute benchmark' for defense strategies, emphasizing proactive measures and adaptive frameworks like MITRE ATT&CK to outsmart attackers.

30:19

Creator website

Episode guests

Eric Carter

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

AI-driven systems like conversational AI simplify security decision-making by providing comprehensive insights for faster threat response.

Real-time threat detection and tools like Runtime Insights are essential for minimizing risks in constantly evolving AWS security environments.

Deep dives

The Role of AI in Cloud Security

AI is becoming an important tool in cloud security, particularly with the emergence of conversational AI systems designed to assist security analysts. These systems aim to simplify the complex information presented to security teams, enabling them to make quicker and more informed decisions. For example, users can ask detailed multi-part questions to receive comprehensive insights into threats, permissions, and mitigation strategies at once. This capability not only accelerates human response but also enhances the understanding of security tools, allowing teams to focus on the most pressing threats.

Intro

3min

Human-AI Collaboration in Security

6min

Evolving Threats in Cloud Security

5min

Navigating Cloud Security Challenges

5min

The Evolving Landscape of Cybersecurity and Threat Management

2min

Navigating Cloud Security Challenges

6min

Navigating the Evolving Landscape of AWS Cloud Security

2min

Eric Carter of Sysdig joins Corey to tackle the evolving landscape of cloud security, particularly in AWS environments. As attackers leverage automation to strike within minutes, Sysdig focuses on real-time threat detection and rapid response. Tools like Runtime Insights and open-source Falco help teams identify and mitigate misconfigurations, excessive permissions, and stealthy attacks, while Kubernetes aids in limiting lateral movement. Eric introduced the “10-minute benchmark” for defense, combining automation and human oversight. Adapting to constant change, Sysdig integrates frameworks like MITRE ATT&CK to stay ahead of threats. Corey and Eric also discuss Sysdig’s conversational AI security analyst, which simplifies decision-making.

Show Highlights
(0:00) Intro
(0:32) Sysdig sponsor read
(0:51) What they do at Sysdig
(3:28) When you need a human in the loop vs when AI is useful
(5:12) How AI may affect career progression for cloud security analysts
(8:18) The importance of security for AI
(12:18) Sysdig sponsor read
(12:39) Security practices in AWS
(15:19) How Sysdig’s security reports have shaped Corey’s thinking
(18:10) Where the cloud security industry is headed
(20:03) Cloud security increasingly feeling like an arms race between attackers and defenders
(23:33) Frustrations with properly configuring leased permissions
(28:17) How to keep up with Eric and Sysdig

About Eric Carter
Eric is an AWS Cloud Partner Advocate focused on cultivating Sysdig’s technology cloud and container partner ecosystem. Eric has spearheaded marketing efforts for enterprise technology solutions across various domains, such as security, monitoring, storage, and backup. He is passionate about working with Sysdig's alliance partners, and outside of work, enjoys performing as a guitarist in local cover bands.

Links

Sysdig's website: https://sysdig.com/
Sysdig's AWS Cloud Security: https://sysdig.com/ecosystem/aws/
Sysdig’s 5 Steps to Securing AWS Cloud Infrastructure: https://sysdig.com/content/c/pf-5-steps-to-securing-aws-cloud-infrastructure?x=Xx8NSJ

Sponsor

Sysdig: https://www.sysdig.com

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Screaming in the Cloud

Best Practices for Securing AWS Cloud with Eric Carter

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Role of AI in Cloud Security

The Importance of Runtime Security and Real-Time Response

Challenges in Cloud Security Configuration

The Evolving Landscape of Threats and Defense

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Screaming in the Cloud

Best Practices for Securing AWS Cloud with Eric Carter

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Role of AI in Cloud Security

The Importance of Runtime Security and Real-Time Response

Challenges in Cloud Security Configuration

The Evolving Landscape of Threats and Defense

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights