Cloud Wars; Episode I - The IAM Menace

Vulnerabilities are synergistic. A bunch of small findings can add up to one big catastrophe. This is especially true in the cloud, where a single compromised instance can be used to escalate IAM privileges and take over an entire account. SANS Senior Instructor Eric Johnson has seen this countless times in the field. Join Eric as he discusses one of his cloud IAM war stories with Certified Instructor Brandon Evans. This story will demonstrate how attackers pivot within the cloud, which cloud permissions need to be scrutinized, and how to segment your organization to protect your cloud assets. Join the co-authors of SEC510: Public Cloud Security: AWS, Azure, and GCP, Brandon Evans and Eric Johnson in this 3-part Live Stream Series Part 2 - April 6 | 2 pm ET Part 3 - April 27 | 2 pm ET Brandon Evans Brandon works for Zoom Video Communications, in which he leads their internal Application Security training. As an application developer for most of his professional career, he moved into security full-time largely because of his many formal trainings through SANS. He’s a contributor to the OWASP Serverless Top 10 Project and a co-leader for the Nashville OWASP chapter. Brandon is lead author for SEC510: Public Cloud Security: AWS, Azure, and GCP and a contributor and instructor for SEC540: Cloud Security and DevOps Automation. Eric Johnson Eric is a Co-founder and Principal Security Engineer at Puma Security and a Senior Instructor with the SANS Institute. His experience includes cloud security assessments, cloud infrastructure automation, static source code analysis, web and mobile application penetration testing, secure development lifecycle consulting, and secure code review assessments. Eric is the lead author and an instructor for SEC540: Cloud Security and DevSecOps Automation and a co-author and instructor for SEC510: Public Cloud Security: AWS, Azure, and GCP. Additionally, Eric is a SANS Security Awareness Developer Training Advisory Board Me