Cloud computing is becoming the new normal. The question is no longer, if? It’s, how fast can we move and what are we going to move first? Timothy Sandage explains how up-front design of your cloud environment can be done in a way that creates a reliably secure and controlled environment, no matter how the cloud resources are used.
Timothy offers an overview of “secure by design” principles and shows how an AWS environment can be configured to provide a reliable operational security control capability across multiple industry verticals (e.g., HIPAA, FISMA, and PCI) to include operational reporting trough the use of cloud security services (e.g., Config/Config Rules, CloudTrail, and Inspector) and partner integration capabilities with solutions such as Splunk, Trend Micro, Evident.io, and Allgress for real-time governance, risk, and compliance reporting.
Tim Sandage is a senior security partner strategist for Amazon Web Services (AWS), where he is responsible for global strategic alignment of AWS cloud computing services with current and future compliance capabilities as well as external consulting with AWS customers, public policy organizations, and standard bodies across the globe. Tim is an active public speaker on secure cloud adoption at both internal and external workshops, conferences, and hands-on labs (boot camps) and a community advocate for organization using and promoting cloud technologies. Previously, Tim worked as a consultant supporting secure adoption of cloud services across multiple cloud services providers, such as Microsoft, Google, Salesforce, and HP. Tim’s work included the development of secure cloud computing practices, risk assessments, and secure/complaint cloud computing adoption. Tim has an extensive US federal government security background with over 25 years of service in the US Air Force running regional classified and unclassified military networks. Tim is the past president of the ISACA, Puget Sound Chapter in Seattle, WA, and holds multiple certifications, including Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), and Certificate of Cloud Security Knowledge (CCSK). Tim holds a bachelor’s degree in information technology from the University of Phoenix.
©2016, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org