Learn how you can defend your applications on AWS against diverse set of Internet threats, like DDoS, Bots or Zero-day attacks. At this session you will learn about how your applications on AWS are inherently secured against common threats. You will also learn about how you can use AWS security services like AWS WAF, Shield and Firewall Manager to build a robust and customised protection specific to your applications.
Learn how you can defend your applications on AWS against diverse set of Internet threats, like DDoS, Bots or Zero-day attacks. At this session you will learn about how your applications on AWS are inherently secured against common threats. You will also learn about how you can use AWS security services like AWS WAF, Shield and Firewall Manager to build a robust and customised protection specific to your applications.
A simple on-premise based solution. Maybe mention that a lot of people rely on security through obscurity?
There are tons of attacks you need to think about, and these leads into bunch of challenging design considerations.
There are tons of attacks you need to think about, and these leads into bunch of challenging design considerations.
A good Web Application Firewall should help you quickly set fundamental protections, customize them to your applications and help you easily visualize your actions so you can create a dynamic security posture.
Pointing out the the benefits of AWS WAF. Perhaps rename title?
This is animated (arrow)
Call out more on API Gateway, our recent launch.
This is animated (arrow)
Call out more on API Gateway, our recent launch.
This is animated (arrow)
Call out more on API Gateway, our recent launch.
This is animated (by verticals)
Talk about how these tools can help build solution to deal with bad bots and app vulnerabilities.
Mention how we have OWASP and CVE protection from managed rules. Also our own OWASP whitepaper.
https://aws.amazon.com/answers/security/aws-waf-security-automations/
Configuring a web application firewall strategy can be challenging and burdensome to large and small organizations alike, especially for those who do not have dedicated security teams. To simplify this process, we offer Security Automations solution which provides fine-grained control over the requests attempting to access your web application.
https://aws.amazon.com/answers/security/aws-waf-security-automations/
Configuring a web application firewall strategy can be challenging and burdensome to large and small organizations alike, especially for those who do not have dedicated security teams. To simplify this process, we offer Security Automations solution which provides fine-grained control over the requests attempting to access your web application.
https://aws.amazon.com/blogs/security/how-to-use-amazon-guardduty-and-aws-web-application-firewall-to-automatically-block-suspicious-hosts/
How to use Amazon GuardDuty and AWS Web Application Firewall to automatically block suspicious hosts
1. A GuardDuty finding is raised with suspected malicious activity.
2. A CloudWatch Event is configured to filter for GuardDuty Finding type.
3. A Lambda function is invoked by the CloudWatch Event and parses the GuardDuty finding.
4. State data for blocked hosts is stored in Amazon DynamoDB table. The Lambda function checks the state table for existing host entry.
5. The Lambda function creates a Rule inside AWS WAF and in a VPC NACL.
6. A notification email is sent via Amazon Simple Notification Service (SNS).
Simplified Management of WAF Rules
Integrated with AWS Organizations
Centrally managed global rules and account-specific rules
Ensure Compliance to WAF Rules
Ensure entire Organization adheres to mandatory set of rules
Apply protection even when new Accounts or resources are created
Central Visibility Across Organization
Central visibility of WAF threats across Organization
Compliance Dashboard for audit firewall status
An organization’s InfoSec team learns and operates WAF instead of each Account owner
This is animated (arrow)
Call out more on API Gateway, our recent launch.