Securing your IaaS infrastructure Or – how not to become the next Code-Spaces
Last June, a code repository SaaS provider name code-spaces was completely wiped out and closed business after an intruder managed to gain access to their AWS dashboard. All of the company data including volumes, snapshots, objects and backup was deleted leaving the company manager only one alternative – close the business.
Infrastructure as a Service can do amazing things for your business, providing young companies access to enterprise level infrastructure with flexibility and ease of use. But the very same advantages of the cloud also possess the greatest threats. The centralization of controls, resources polling and automation capabilities can act as two edged sword, if not maintain correctly.
In the presentation, we will review the challenges facing IaaS consumers, overview important IaaS security features inside OpenStack and other platforms and list the important attack vectors to look out for.
Moshe Ferber is a leading information security expert with rich 20 years’ experience in information security, and specialist’s expertise in identity management, information security event management, and related innovative technologies. In the past served as information security manager for Ness Technologies, founder of Cloud7, an MSSP provider and plenty more. Mr. Ferber is one of the most experienced CCSK trainers who taught hundreds of students and spoke at numerous public speaking events worldwide.