Secure Server Deployments in Hostile Territory

Kyle Rankin

Director of Engineering Operations

NCC Group Domain Services


http://greenfly.org/talks/security/secure_server_deployments.html

Agenda

Introduction

Traditional Security Assumptions

Security Challenges in AWS

Security Challenges in AWS cont.

AWS Security Model

IAM

AWS Security Model

Our IAM Practices

AWS Security Model

Security Groups

AWS Security Model

Our Security Group Practices

Puppet

Handling Secrets

Manage Dynamic IP

Overall Best Practices

Questions?

Additional Resources