AWS re:Invent — Day 2 reflections
  • SignalHub — A good tool for alerting from security automations
  • LambdaCanary — A tool to make sure that you Lambda functions (for IR) are in place and have the correct code from a parent to a child account.
  • GuardDuty Multi-Account Manager — The name is pretty descriptive.
  • MozDef — Mozilla Defense Platform — An OpenSource Siem
  • ExposedKeyRemediator-v2 — A tool to lock down exposed AWS keys.
  • It does the nitty gritty stuff around envelope encryption for you.
  • It easily allows you to encrypt against multiple CMK’s in multiple regions
  • They made all the mistakes for you (and corrected them) and made client side encryption using KMS easy and secure.



CISO of Schuberg Philis

Love podcasts or audiobooks? Learn on the go with our new app.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store