SANS Cloud Security

Is your cloud security strategy hitting a wall? Identity systems like Active Directory are powerful, but they weren’t designed to handle the full complexity of modern cloud environments. The solution? Modern identity solutions with zero trust and conditional access. Explore strategies to modernize and secure your identity systems → https://lnkd.in/ekCXhHJD (SANS Cloud Security is here to support your journey.) #WhereSANSLeadsSecurityFollows #CloudSecurity

💡 Want a free peek at the kind of content covered in SEC549? Join David Hazar for a webcast on identity and access management, centralized security inspection, and storage service security in the cloud. Strengthen your cloud security with insights backed by SANS training. January 8 | 10:00am ET 📅 Register for free now: https://buff.ly/3ZllISY #CloudSecurity #CloudArchitecture #SANSCloudAce

Generative AI applications are booming, but do you know how to secure them? Register for the beta run of SEC545: GenAI and LLM Application Security to learn: 🔎 GenAI risks like malicious models and injection attacks 🛡️ Mitigation strategies for secure deployment 💡 Cutting-edge tools like LangChain and RAG Enroll now to lead the way in GenAI security! https://lnkd.in/edrhWGVu #GenAI #GenAISecurity #LLMSecurity #SEC545

🏂💨 Time is running out! Complete your challenges and submit your write-ups by January 3 (TOMORROW) to enter the #HolidayHack Challenge contest. Compete for amazing prizes like a SANS Self-paced Course, a #NetWars Continuous subscription, and exclusive swag. 🤩 Submit your report now: https://lnkd.in/eduwXKmx

Is your cloud identity ready for the future? 🔮 In Part 3 of our Cloud Security Essentials webcast series, Microsoft Azure's Angelica Faber, SANS experts Frank Kim, and Simon Vernon, dive into modern identity solutions transforming cloud security, including: 🔑 Zero trust for secure access 🌐 Conditional access to adapt to risks 📡 Modernizing legacy systems for today’s demands Build on insights from Part 2, where Amazon Web Services (AWS)'s Paul Vixie and SANS experts tackled secure-by-design principles, and continue your journey to stronger cloud security. Watch playback → https://lnkd.in/e8qB_jFy #WhereSANSLeadsSecurityFollows #CloudSecurity

Cloud security made smarter ☁️ Compare Amazon Web Services (AWS), Microsoft Azure, and GCP security services with our Secure Service Configuration poster, highlighting insecure defaults and uncovering features to protect your assets better. Access resources to strengthen your cloud → https://lnkd.in/eYdUikyH #WhereSANSLeadsSecurityFollows

⚡ Calling all security pioneers! The beta run of SEC545: GenAI and LLM Application Security is here. Learn how to secure GenAI from development to deployment while working hands-on with LangChain, AWS Bedrock, and more. Spots are limited: https://lnkd.in/edrhWGVu #GenAI #GenAISecurity #LLMSecurity #SEC545

🔐 Strengthen your Cloud Security Architecture Here are 3 key takeaways from David Hazar's FREE upcoming webcast: ☁️ Explore cross-cloud identity strategies ☁️ Learn centralized inspection and storage security techniques ☁️ Manage break-glass accounts with evolving MFA requirements 📅 Free registration: https://buff.ly/3ZllISY #CloudSecurity #SANSCloudAce #CloudArchitecture

Strong foundations, safer clouds 🛠️ Integrate security into every stage of development with Secure by Design (SbD): ✅ Build resilient systems with security-first design ✅ Reduce user configuration burdens ✅ Use automation to catch risks early Explore how SbD fortifies cloud security → https://lnkd.in/eUnXQXDd #WhereSANSLeadsSecurityFollows #CloudSecurity

Last week, Anthropic published an article discussing techniques for building effective #AI agents. Here are some considerations: 🔥 While this may not seem directly related to security, understanding how emerging GenAI and LLM applications/agents operate and interact with surrounding systems is critical for effective threat modeling and mitigation. 🔥 Several frameworks are being used to build AI agents, with AWS Bedrock emerging as a notable option. This implies that GenAI applications will increasingly run in cloud environments, potentially accessing various resources—raising new security challenges. 🔥 AI agents are designed to interact with surrounding systems. Mapping and analyzing data flows are essential for identifying vulnerabilities and planning security controls. 🔥 Not everything needs to be AI. Keep it simple—use LLMs only when necessary, aligning their use with specific tasks to minimize complexity and reduce risks. https://lnkd.in/gmJCh95E