McAfee and AWS

Shift-Left Security

Dates:

North America Container Security

Thursday, July 15th

9:00am – 12:00pm PST

 

North America CNAPP

Wednesday, July 28th

9:00am – 12:00pm PST

 

APAC Container Security

Tuesday, August 3rd 

2:00pm – 5:00pm Sydney Australian Eastern Time

 

APAC CNAPP

Tuesday, August 10th 

2:00pm – 5:00pm Sydney Australian Eastern Time

 

EMEA Container Security

Thursday, September 16th 

9:00am – 12:00pm BST

 

EMEA CNAPP

Thursday, September 23rd 

9:00am – 12:00pm BST

McAfee and AWS Solution Architects will present an in-depth, hands-on session to improve your security posture for your applications running in  IaaS/PaaS environments:

  • Learn how to build a layered security model that reducing risk cloud workloads, containers, and services you depend on for orchestration, network, and storage.
  • Ensure Kubernetes and the overall cloud environment both meet security best practices and standards.
  • Understand the nature of the CI/CD pipeline and the burden cloud-unfriendly security practices can put on developers.


In our hand-on scenario you’ll sit in the shows of an infrastructure engineer working on applications running on AWS. We provide you with Continuous Integration / Continuous Delivery (CI/CD) tools like CodeCommit, CloudFormation and Jenkins. In the lab, we’ll integrate Jenkins with McAfee MVISION Cloud to scan the CloudFormation template for security misconfigurations. Some examples of the tasks you’ll get to do:

  • Find security misconfigurations with a containerized web application and surrounding infrastructure (Cloud Security Posture Management)
  • Identify sensitive data exposed in Amazon Simple Storage Service (Amazon S3) Buckets (Data Loss Prevention).
  • Learn how to help developers push code securely using a CI/CD process using Kubernetes, Jenkins, and Git repositories.
  • Explore the “Shift Left” method to transparently add security checks to code BEFORE it gets pushed to production.

Space is limited and is first come first serve for this workshop so RSVP soon to save your seat.

 

Cloud-Native Application Protection

 

Cloud-Native applications have many advantages over their monolithic cousins in that they can provide of rapid development at massive scale thanks to automation.  This creates a dynamic environment where traditional methods for protecting applications can’t provide the security required at the pace you need it.  McAfee’s Cloud-Native Application Protection Platform (CNAPP) was designed to bring critical security functionality such as security audits, DLP, workload protection, vulnerability assessments, and file integrity monitoring to these applications, at scale, without slowing down the business.

In this session McAfee and AWS Solution Architects will discuss the theory and architecture of a cloud-native application and provide a hands-on workshop where you’ll learn how to:

  • Find security misconfigurations with a containerized web application and surrounding infrastructure (Cloud Security Posture Management)
  • Identify sensitive data exposed in Amazon Simple Storage Service (Amazon S3) Buckets (Data Loss Prevention).
  • Fingerprint applications and prevent rogue processes from running on your workloads
  • Perform vulnerability scans for both traditional VMs and container images
  • Configure file integrity monitoring for containerized workloads to detect changes to critical components


Space is limited and is first come first serve for this workshop so RSVP soon to save your seat.