Build Better Defenses
October 29–30, 2017: Training
October 30–November 1, 2017: Tutorials & Conference
New York, NY

Securing existing AWS infrastructure

Devina Dhawan (Etsy)
2:10pm–2:50pm Tuesday, October 31, 2017
Teachable moments
Location: Sutton South
Average rating: ***..
(3.00, 1 rating)

Who is this presentation for?

  • Anyone who has an interest in AWS cloud security

What you'll learn

  • Learn how to improve your existing AWS infrastructure


There are two kinds of people in the security community: those who embrace the cloud and all it has to offer and those who have the cloud thrust upon them. Regardless of where you stand on the issue, most traditional bare-metal companies are starting to test out cloud infrastructure to see if it is right for them, although too often these tests just linger for the security team to reconfigure.

Amazon Web Services remains the most popular enterprise cloud service and is becoming more ubiquitous every year. Devina Dhawan explains how to improve your existing AWS infrastructure by bringing in external tooling, mastering the AWS command-line interface, and improving communication with the rest of your organization. Devina covers role- and service-based access, including EC2 security roles, S3 bucket policies, and how to audit them and discusses how to set up logging and alerting, so you too can wake up in the middle of the night when someone enables Global SSH on all your EC2 instances.

Photo of Devina Dhawan

Devina Dhawan


Devina Dhawan is a security engineer at Etsy. In her spare time, she works with organizations such as Girls Who Code and Built by Girls to mentor young engineers.