Infrastructure-as-code tools can be used to automate the deployment of serverless functions and dependent resources in production environments, and the same tools can be used to deploy controls like monitoring and logging for these serverless applications. The Center for Internet Security (CIS) publishes benchmarks which provide consensus-based configuration guidelines developed by experts in US government, business, industry, and academia. Organizations can use these benchmarks to help assess and improve security controls.
Luis Eduardo Colon demonstrates where monitoring and logging controls can be automatically deployed using infrastructure as code tools and how to best integrate this automation with serverless deployments. You’ll learn about the CIS AWS Foundations Benchmark V1.1.0, discover how accounts can be hardened, how to implement continuous monitoring capabilities, and what controls cannot be fully automated, and explore security considerations for serverless applications.
Luis Eduardo Colon is a senior developer advocate for CloudFormation at Amazon Web Services. Previously, Luis was chief architect for TeamQuest and director of research and development for CDS Global. His areas of interest include DevOps automation, data science, Agile methodologies, and serverless applications. Luis holds a BS in computer engineering from Iowa State University and an MS in data analytics from SNHU.
©2018, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org