Best Practices for Securing AWS Cloud with Eric Carter

Nov 27, 2024

Eric Carter, Director of Product Marketing at Sysdig, dives into the fast-paced world of AWS cloud security. He discusses the significance of real-time threat detection against evolving attacks and the critical role of automation alongside human oversight. Tools like Falco and Runtime Insights are highlighted for their ability to detect misconfigurations and stealthy threats. Eric introduces a '10-minute benchmark' for defense strategies, emphasizing proactive measures and adaptive frameworks like MITRE ATT&CK to outsmart attackers.

Ask episode

Chapters

Transcript

Episode notes

Intro

00:00 • 3min

Human-AI Collaboration in Security

03:28 • 6min

Evolving Threats in Cloud Security

09:53 • 5min

Navigating Cloud Security Challenges

15:19 • 5min

The Evolving Landscape of Cybersecurity and Threat Management

20:03 • 2min

Navigating Cloud Security Challenges

22:21 • 6min

Navigating the Evolving Landscape of AWS Cloud Security

27:55 • 2min

Eric Carter of Sysdig joins Corey to tackle the evolving landscape of cloud security, particularly in AWS environments. As attackers leverage automation to strike within minutes, Sysdig focuses on real-time threat detection and rapid response. Tools like Runtime Insights and open-source Falco help teams identify and mitigate misconfigurations, excessive permissions, and stealthy attacks, while Kubernetes aids in limiting lateral movement. Eric introduced the “10-minute benchmark” for defense, combining automation and human oversight. Adapting to constant change, Sysdig integrates frameworks like MITRE ATT&CK to stay ahead of threats. Corey and Eric also discuss Sysdig’s conversational AI security analyst, which simplifies decision-making.

Show Highlights
(0:00) Intro
(0:32) Sysdig sponsor read
(0:51) What they do at Sysdig
(3:28) When you need a human in the loop vs when AI is useful
(5:12) How AI may affect career progression for cloud security analysts
(8:18) The importance of security for AI
(12:18) Sysdig sponsor read
(12:39) Security practices in AWS
(15:19) How Sysdig’s security reports have shaped Corey’s thinking
(18:10) Where the cloud security industry is headed
(20:03) Cloud security increasingly feeling like an arms race between attackers and defenders
(23:33) Frustrations with properly configuring leased permissions
(28:17) How to keep up with Eric and Sysdig

About Eric Carter
Eric is an AWS Cloud Partner Advocate focused on cultivating Sysdig’s technology cloud and container partner ecosystem. Eric has spearheaded marketing efforts for enterprise technology solutions across various domains, such as security, monitoring, storage, and backup. He is passionate about working with Sysdig's alliance partners, and outside of work, enjoys performing as a guitarist in local cover bands.

Links

Sysdig's website: https://sysdig.com/
Sysdig's AWS Cloud Security: https://sysdig.com/ecosystem/aws/
Sysdig’s 5 Steps to Securing AWS Cloud Infrastructure: https://sysdig.com/content/c/pf-5-steps-to-securing-aws-cloud-infrastructure?x=Xx8NSJ

Sponsor

Sysdig: https://www.sysdig.com