In this session, Edmunds discusses how they create workflows to manage their regulated workloads with Amazon Macie, a newly-released security and compliance management service that leverages machine learning to classify your sensitive data and business-critical information. Amazon Macie uses Recurrent Neural Networks (RNN) to identify and alert potential misuse of intellectual property. They do a deep dive into machine learning within the security ecosystem.
11. 11
S3 growth = S3(1 + r)t
• Very easy to store data
• Replicate across regions
• Apply lifecycle policies, archival
• Share with people
12. 12
• Data lake
• Big data analytics with EMR
• Application storage
• Database backups
• …
• In a nutshell… any kind of data
S3 is storage for the Internet
13. 13
Easy ≠ accidents
• Use the bucket permissions
• IAM roles and policies
• Apply lifecycle policies, archival
• Keep keys secure
• Do not share the bucket or make public unless really needed
15. 15
Challenges
• What data do I have in the cloud?
• Where is it located?
• How is data being shared and stored?
• How can I classify data in near-real time?
• What PII/PHI is possibly exposed?
• How do I build workflow remediation for my security and
compliance needs?
16. 16
How we use Macie at Edmunds
• Up to the minute data scans, and auditing reports
• Access and alerting to security events and to enforce best
practices
• Data classification – identification of sensitive content
• Integration with dev-ops workflows
17. 17
Data classification
• To know what is in data—PII, credits cards, etc.
• See which risk profile and data buckets relationship
• Filter and search for specific data type risks
• See the access pattern
18. 18
Macie lets me do my job more effectively, on things which otherwise
were not possible. It’s helping me take compliance and security to
the next level.