In this firm episode of the Exploring Information Security podcast, Andrew Krug of ThreatResponse joins me to discuss tips and resources for hardening AWS.
Andrew (@andrewkrug) and Alex (@amccormack) recently presented on AWS hardening at DerbyCon (slides). I previously talked about their talk on the "What I learned at DerbyCon" episode. Alex was gracious enough to join me to discuss what he talked about in his talk. He also provided some other tips and resources for improving the security in an AWS environment.
In this episode we discuss:
- Why hardening AWS is important
- What attacks we need to worry about in AWS
- How to harden AWS
- What are the tools he's created to help harden AWS