Toptal CLS Workshop: AWS Security - From Vulnerable to Secure

Past Event
Thursday, August 15, 2024, 9:00 AM to 10:30 AM EDT
Online

About the Event

Join us for a special workshop edition of our Continuous Learning Series (CLS), hosted by the Toptal Learning Team, designed to provide immersive, hands-on learning experience. This 1.5-hour workshop  focuses on practical, real-time demonstrations of security solutions within AWS environments.

Begin with an “insecure” serverless application setup—API Gateway, Lambda, S3 for storing medical images. Under the guidance of Samuel Lock, witness the transformation of this setup into a secure model by applying AWS-native services. 

Pre-Session Preparation:
To fully engage with the hands-on components of our workshop, please note the following:

  • CloudFormation Template: You will receive a download link (through DM) one day before the workshop. If you plan to participate hands-on along with @samuel.lock during the workshop, please download and deploy this CloudFormation template to your AWS account beforehand.
  • Observation Option: If you prefer, you can simply observe the demonstrations and participate in Q&A. Either way, you’ll gain valuable insights into securing AWS applications.

What You’ll Learn & Workshop Agenda:

  • Introduction and Setup (10 minutes):
    • Brief overview and initial setup of the insecure serverless application.
  • Security Enhancements (50 minutes):
    • GuardDuty: Activate GuardDuty and observe how public bucket policies can trigger security alerts.
    • Amazon Macie: Set up Macie to detect PII in S3 application logs.
    • IAM Access Analyzer: Assess and minimize unnecessary Lambda role permissions.
    • AWS Config: Implement automatic remediation for publicly exposed S3 buckets.
  • Integration and Review (20 minutes):
    • Security Hub: Centralize monitoring and management of security alerts and data.
    • Security Culture: Review a PR to identify and discuss new security threats and remediation strategies.
  • Q&A Session (10 minutes):
    • Open discussion to address participant questions and clarify any concepts.

This workshop is designed for developers, security professionals, and IT managers who are directly involved in developing, deploying, and securing serverless applications on AWS. 

Register now to ensure your place in this essential session that offers real-time problem-solving and interactive demonstrations.

Event Leader

Vishal Shah

Your message to Vishal was sent.

Share This Event

Have an Idea for a Toptal Event?

Share your ideas with the @community-team in the #_community-events channel any time.

Event Leader

Vishal Shah

Your message to Vishal was sent.

Share This Event

Explore Similar Events

Join the Toptal® Community