Cloud Security Podcast AWS Multi-Account Security: What Netflix Learned
18 snips
Feb 13, 2025 Join cloud security experts Patrick Sanders and Joseph Kjar from Netflix as they share their insights on securing AWS multi-account environments. They discuss why an identity-first approach is essential for security, tackling challenges like least privilege access and IAM role migrations. The duo emphasizes balancing security with developer efficiency, and they shed light on strategies for isolating cloud identities amidst complexities. Packed with practical tips, their conversation offers valuable lessons from Netflix's cloud security journey.
AI Snips
Chapters
Transcript
Episode notes
Identity-First Security
- Netflix moved from multi-tenant environments to an identity-first model.
- This change improves security boundaries and developer experience.
Prioritizing Migrations
- Estimate migration complexity, security risk, and operational risk.
- Prioritize low-complexity, high-security-risk applications for initial migration.
Iterative Migration
- Don't over-engineer migration tooling upfront.
- Start with basic tools, perform a migration, learn, iterate and scale up.