Bill Shinn, AWS, sits down with Stu Miniman & John Walls at AWS Summit 2017 in New York City, NY
#AWSSummit #theCUBE
https://siliconangle.com/2017/08/14/new-devsecops-fast-forwards-security-response-says-aws-awssummit/
New DevSecOps fast-forwards security response, says AWS architect
Cloud used to be a hard sell to chief security officers. Now vendors like Amazon Web Services Inc. are bringing them around. Cloud can, in fact, strengthen data security and elevate CSOs from infrastructure to higher code and development levels, according to Bill Shinn (pictured), principal security solutions architect at AWS.
“You have DevOps and now you have DevSecOps,” Shinn said. DevSecOps enables security teams to operate with greater agility, he added. Once cloud abstracts away infrastructure plumbing and patching, they can move onto more advanced security tasks.
“They can focus more on their code quality, more on engineering principals,” Shinn stated.
Shinn spoke with Stu Miniman (@stu) and John Walls (@JohnWalls21), co-hosts of theCUBE, SiliconANGLE Media’s mobile livestreaming studio, during today’s AWS Summit in New York City. (* Disclosure below.)
AWS made several security announcements at the even. To start, Amazon Macie classifies data objects in AWS S3 storage with machine learning algorithms. “It has a very differentiated classification engine,” Shinn said. Topic modeling, regular expressions and a variety of other tools help identify data.
Is Macie AWS’s answer to Europe’s General Data Protection Regulation, which goes live next May? “If you’re moving data by European citizens around, you really have to understand that data. I think Macie will be a big part of a lot of customers’ strategy on GDPR,” Shinn said.
AWS also released Elastic File System Encryption that natively integrates with key management systems.
And, in response to customer demand, the company has issued a new iteration of CloudHSM — managed hardware security module. This allows customers to use their own encryption keys on the AWS cloud. The latest version features greater integration with other services and automation.
Engineers and CSOs switch hats
Automation such as that introduced in CloudHSM and other AWS services can advance customers deeper into DevSecOps, according to Shinn. AWS is increasingly talking with security organizations about DevOps tool chains, he added.
“If security can get those fast engineering principals down, then they’re just as responsive. It also puts security in the hands of engineers and developers,” Shinn concluded.
Watch the complete video interview below, and be sure to check out more of SiliconANGLE’s and theCUBE’s coverage of AWS Summit. (* Disclosure: TheCUBE is an unpaid media partner for AWS Summit. Neither Amazon Web Services Inc. nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)
Forgot Password
Almost there!
We just sent you a verification email. Please verify your account to gain access to
AWS Summit 2017 | New York. If you don’t think you received an email check your
spam folder.
In order to sign in, enter the email address you used to registered for the event. Once completed, you will receive an email with a verification link. Open this link to automatically sign into the site.
Register For AWS Summit 2017 | New York
Please fill out the information below. You will recieve an email with a verification link confirming your registration. Click the link to automatically sign into the site.
You’re almost there!
We just sent you a verification email. Please click the verification button in the email. Once your email address is verified, you will have full access to all event content for AWS Summit 2017 | New York.
I want my badge and interests to be visible to all attendees.
Checking this box will display your presense on the attendees list, view your profile and allow other attendees to contact you via 1-1 chat. Read the Privacy Policy. At any time, you can choose to disable this preference.
Select your Interests!
add
Upload your photo
Uploading..
OR
Connect via Twitter
Connect via Linkedin
EDIT PASSWORD
Share
Forgot Password
Almost there!
We just sent you a verification email. Please verify your account to gain access to
AWS Summit 2017 | New York. If you don’t think you received an email check your
spam folder.
In order to sign in, enter the email address you used to registered for the event. Once completed, you will receive an email with a verification link. Open this link to automatically sign into the site.
Sign in to gain access to AWS Summit 2017 | New York
Please sign in with LinkedIn to continue to AWS Summit 2017 | New York. Signing in with LinkedIn ensures a professional environment.
Are you sure you want to remove access rights for this user?
Details
Manage Access
email address
Community Invitation
Bill Shinn, AWS | AWS Summit 2017
Bill Shinn, AWS, sits down with Stu Miniman & John Walls at AWS Summit 2017 in New York City, NY
#AWSSummit #theCUBE
https://siliconangle.com/2017/08/14/new-devsecops-fast-forwards-security-response-says-aws-awssummit/
New DevSecOps fast-forwards security response, says AWS architect
Cloud used to be a hard sell to chief security officers. Now vendors like Amazon Web Services Inc. are bringing them around. Cloud can, in fact, strengthen data security and elevate CSOs from infrastructure to higher code and development levels, according to Bill Shinn (pictured), principal security solutions architect at AWS.
“You have DevOps and now you have DevSecOps,” Shinn said. DevSecOps enables security teams to operate with greater agility, he added. Once cloud abstracts away infrastructure plumbing and patching, they can move onto more advanced security tasks.
“They can focus more on their code quality, more on engineering principals,” Shinn stated.
Shinn spoke with Stu Miniman (@stu) and John Walls (@JohnWalls21), co-hosts of theCUBE, SiliconANGLE Media’s mobile livestreaming studio, during today’s AWS Summit in New York City. (* Disclosure below.)
AWS made several security announcements at the even. To start, Amazon Macie classifies data objects in AWS S3 storage with machine learning algorithms. “It has a very differentiated classification engine,” Shinn said. Topic modeling, regular expressions and a variety of other tools help identify data.
Is Macie AWS’s answer to Europe’s General Data Protection Regulation, which goes live next May? “If you’re moving data by European citizens around, you really have to understand that data. I think Macie will be a big part of a lot of customers’ strategy on GDPR,” Shinn said.
AWS also released Elastic File System Encryption that natively integrates with key management systems.
And, in response to customer demand, the company has issued a new iteration of CloudHSM — managed hardware security module. This allows customers to use their own encryption keys on the AWS cloud. The latest version features greater integration with other services and automation.
Engineers and CSOs switch hats
Automation such as that introduced in CloudHSM and other AWS services can advance customers deeper into DevSecOps, according to Shinn. AWS is increasingly talking with security organizations about DevOps tool chains, he added.
“If security can get those fast engineering principals down, then they’re just as responsive. It also puts security in the hands of engineers and developers,” Shinn concluded.
Watch the complete video interview below, and be sure to check out more of SiliconANGLE’s and theCUBE’s coverage of AWS Summit. (* Disclosure: TheCUBE is an unpaid media partner for AWS Summit. Neither Amazon Web Services Inc. nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)
