Zaal 7

Sessions

ACD308

Advanced VPC Architectures: Saving costs with better connectivity

Room: Zaal 7 | Time: 11:00 | Duration: 60

Every AWS account begins with a default VPC, which is often set up once and then forgotten. However, unlocking the full potential of the VPC can yield numerous benefits. Enhance security with defense in depth within your network, optimize costs by leveraging shared VPC connectivity resources, connect easily using private DNS, and streamline developer access to databases. These best practices are helpful for small startups that want to minimize costs as well as big corporates that wish to enhance security.

Steffan Norberhuis

Founder Rocketleap

ACD305

Sensible Security for AWS Workloads

Room: Zaal 7 | Time: 13:00 | Duration: 30

We’ve all read the Well Architected Framework and followed best practices to build security into our workloads, but of all the controls and recommendations, which make the difference? Using real-world data and his ten years of cybersecurity experience, Nick will talk through the most common attack scenarios against AWS workloads, and the key security controls to have in place. Attendees will come away with a better understanding of the real security threats to their projects, and guidance on which controls to prioritise, why they matter, and how to balance them against engineering effort.

Nick Jones

Global Head of Research @ WithSecure Consulting

ACD310

Building Secure and Efficient SaaS Platforms on AWS Serverless

Room: Zaal 7 | Time: 13:35 | Duration: 30

Let’s go on a journey through the world of multi-tenant architectures on AWS using serverless technologies. In this talk, we will uncover the key aspects of multi-tenancy, including security, tenant isolation, and performance. We will learn how to utilise Cognito for authentication, DynamoDB to store millions of tenant-partitioned records and lambda for compute. We will also explore different deployment models and their tradeoffs, and, finally, we will learn how to implement policy-based isolation with IAM to keep our execution context tied to one specific tenant and avoid data leakage.

Guilherme Dalla Rosa

CTO at MerCloud

Luciano Mammino

AWS Serverless Hero, Senior Architect @ fourTheorem

ACD319

How to use modern serverless with GraphQL

Room: Zaal 7 | Time: 14:10 | Duration: 30

In the year 2024, serverless is much more than just AWS Lambda Functions. Now, it is a full-blown ecosystem of managed services with the concept of paying for what you use. The API level could be written without computing services like Lambda Functions or containers with Fargate. I will show the audience how to deploy the GraphQL API with JavaScript Resolvers, EventBridge, and CDK. Disclaimer: no Lambda Functions will be called during the talk and a demo.

Igor Soroka

Indie Serverless Consultant

ACD327

Focus on what matters - automating a comprehensive security overview in AWS Security Hub

Room: Zaal 7 | Time: 15:30 | Duration: 60

Getting overwhelmed by the amount of findings Security Hub throws at you? It can provide a very good security overview of your AWS account or organization. Still, you will need to find a way to sieve out the clutter and consolidate the rest of the findings. In this talk, I’ll share some tips & tricks on how to do this; in theory, with any tool you like: Security Hub Automations or any other popular 3rd party SIEM tool.

Carlo van Overbeek

Security DevOps Engineer Cloud