| Preventing Publicly Available CloudTrail Logs | KirkpatrickPrice

Preventing Publicly Available CloudTrail Logs

Related Videos

AWS Controls for Implementing a DMZ

AWS Functions to Restrict Database Access

AWS Incident Response Playbook

AWS Incident Response Playbook for Credential compromise

AWS Incident Response Playbook for Ransomware

AWS Incident Response Playbook for S3 Buckets

AWS Password Best Practices

AWS Password Expiration Policies

AWS Password Reuse Policy

AWS Tools for Your SDLC

Attributes of Log Data

Audit Trail Review with Kibana, Athena, and GuardDuty

Audit Your Security Groups for Insecure Ports and Protocols

Avoid Use of the Root Account

Basic Tools for AWS Security

Basics of Role Assumption

Best Practices for Change Management in AWS

Best Practices for Container Security

Best Practices for Password Parameters

Change-Detection Solutions in AWS

Cloud Attacks on the Rise

CloudTrail and CloudWatch Integration

Configuring Network Border Controls

Connect Your AWS Account Using CloudFormation

Creating a Compliant Incident Response Plan

Creating a Data Flow Diagram

Creating a Network Diagram

Define Acceptable Use of Technology Part 1

Defining Business Continuity and Disaster Recovery

Defining Resources in IAM Policies

Defining Resources in S3 Bucket Policies

Defining Roles and Responsibilities in AWS

Deploying Security Patches on EC2 Instances

Developing a Process for User Authentication

Disabling Insecure Ports and Protocols

Disabling Unused Credentials

Do All Keys Have Resources Attached?

Documenting a Systems Inventory in AWS

Does AWS Provide Vendor Defaults?

EC2 Instances in Availability Zones

Enable Maintenance and Backups for RDS

Enabling AWS Config in All Regions

Enabling CloudTrail Log File Validation

Enabling CloudTrail in All Regions

Enabling MFA for All IAM Users

Encrypting Traffic In and Out of AWS

Encryption Decisions for Your Technology Stack

Encryption Opportunities

Encryption for EBS Volumes

Encryption for S3 Buckets

Enforce Separation with Access Controls

Enforcing Strong Encryption in AWS

Enforcing Strong TLS Ciphers

Ensure ALBs Have WAF ACLs Attached

Ensure RDS Instances are Only Accessible by Internal IPs

Ensuring Role Assumption is Logged

Events that Drive Key Rotation

FAQs for Amazon S3 Security

Filters and Alarms in CloudWatch

GuardDuty Alerts for Control Failures

House Accounts in CloudTrail

How to Attach IAM Policies to Groups or Roles

How to Check MFA in a Credential Report

How to Check Use of the Root Account

How to Configure Encryption for EBS Volumes on Existing EC2 Instances

How to Configure Encryption for EBS Volumes on New EC2 Instances

How to Configure Encryption for RDS

How to Configure Encryption for S3 Buckets

How to Edit Inbound Traffic Rules for Default Security Groups

How to Find Administrative Privileges in IAM Policies

How to House Multiple Accounts Within an AWS Organization

How to Modify Password Complexity in a Password Policy

How to Modify Permissions to EBS Snapshots

How to Prevent Password Reuse in a Password Policy

How to Restrict Public Access to S3 Buckets

How to Use S3 Bucket Policies

How to Use S3 Versioning and Lifecycle Rules

IAM Policies for Account Authentication

IAM Policies that Address Administrative Privileges

Identify Unrestricted Access to Ports for Security Groups

Identify if EC2 Instances Are Directly Connected to the Internet

Identifying Assets, Threats, and Vulnerabilities

Identifying Unused Credentials in a Credential Report

Identifying and Ranking Vulnerabilities in AWS

Industry Best Practices for Configuration Standards

Introduction to AWS Network Firewall

Introduction to AWS Security Hub

Introduction to AWS WAF and Shield

Introduction to Amazon CloudWatch

Introduction to Amazon Detective

Introduction to Amazon EKS

Introduction to Amazon Inspector

Introduction to Amazon S3 Access Points

Introduction to IAM Access Analyzer

Key Rotation and Management

Load Balancers Must Require TLS 1.2

Logging Tools in AWS

Logging Web ACL Data in Amazon Kinesis

MFA for API Calls

Meeting Firewall and Router Configuration Standards

Meeting Your Baseline with Patch Manager

Monitor Network Traffic with VPC Flow Logs

Network Segmentation for AWS

PCI Requirement 11.5.1 – Implement a Process to Respond to Change-Detection Solution Alerts

PCI Requirement 12.10 – Implement an Incident Response Plan

PCI Requirement 12.10.1 – Create the Incident Response Plan to Be Implemented

PCI Requirement 12.10.2 – Review and Test the Plan at Least Annually

PCI Requirement 12.10.3 – Designate Specific Personnel to Be Available on a 24/7 Basis

PCI Requirement 12.10.5 – Include Alerts from Security Monitoring Systems

PCI Requirement 12.10.6 – Develop a Process to Modify and Evolve the Incident Response Plan

PCI Requirement 12.5.3 – Establish Security Incident Response and Escalation Procedures

PCI v4.0 - A1.2.2: (Multi-Tenant Service Providers) Implement Processes to Support Forensic Investigations

PCI v4.0 - A1.2.3: (Multi-Tenant Service Providers) Implement Processes for Reporting and Addressing Security Incidents

Penetration Testing for AWS Segmentation Controls

Performing Code Review Prior to Release

Performing a BIA for AWS

Physical Security Responsibilities for AWS

Physical Security Responsibilities for AWS Users

Physical Threats for AWS

Prevent Shared, Group, or Generic Accounts in AWS

Preventing Public Accessibility on DB Instances

Preventing Publicly Available S3 Buckets

Protecting API Gateways with WAF Rules

Protecting CloudTrail Logs

Protecting Web Applications in AWS

Publish and Maintain an Information Security Policy

Quarterly Reviews of Your Security Program

Re-Keying for Decryption

Restrict Access to CloudTrail Logs in S3 Buckets

Restrict Security Group Access to All Ports

Restricting Access to EBS Snapshots

Retaining Your Audit Trail in AWS

Reviewing Firewall and Router Configurations

Rotating Access Keys

Route 53 Support for DNSSEC

Routing Outbound Traffic Through NAT Gateways

Running Vulnerability Scans After a Significant Change

SOC 2 Academy: Incident Response Best Practices

SOC 2 Academy: Incident Response Teams

SOC 2 Academy: Recovering from a Security Incident

SOC 2 Academy: Testing Your Incident Response Plan

Secure Code Development in AWS

Securing Your Log Files

Security Awareness Training for CHD Policies

Separation of Duties in Penetration Testing

Shared Responsibility Matrix in PCI

Support MFA through IAM Policies

Systems Manager Maintenance

Testing Your Business Continuity and Disaster Recovery Plans

Testing for Unauthorized Wireless Access Points

The AWS Shared Responsibility Model

The Difference Between NACLs and Security Groups

The Value of Quarterly Internal Vulnerability Scans

Top 10 AWS Mistakes

Understanding the "Deny All" Function

Using AWS KMS

Using Amazon Time Sync Service

Using IAM Instance Roles for AWS Resource Access

Using IAM Policies

Using OWASP's Kubernetes Cheat Sheet

Using Prowler to Evaluate AWS Security

Using S3 Versioning

Using Systems Manager from a Service-Linked Role

Using TLS 1.2 to Encrypt Data in Transit

Using VPC Endpoints to Access Systems Manager

Using a Bastion Host or Session Manager to Limit Access to Port 22

Using an ASV for External Vulnerability Scans

When to Use S3 Access Control Lists

Your Data Backup Strategy in AWS