large scale enterprise account management · 2017-07-13 · large scale enterprise account...

Report

Post on 26-Jul-2020

2 Views

Category:

Documents

0 Downloads

Preview:

Click to see full reader

TRANSCRIPT

© 2015, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

Ronny Fauth, Daniel WoitheDB Systel GmbH

18.05.2017, Berlin

Large Scale Enterprise Account Management

Agenda

Introduction

Cloud adoption at Deutsche Bahn

Paradigm shifts in IT security

Basic security principles

Access security architecture

Why we are here

iX 5/2017

More than just a technical migration

Vertical Operating Model

Distribution SharedResponsiblity

vDC vDC

vDC vDC

vDC vDC

vDC vDC

vDC

vDC

vDC

vDC

Security concepts need to adopt these changes.

Paradigm shifts in IT security

Decentralization changes security models

Physical security controls are obsolete

Basic security principles

Security by Default – Four security principles

Access Control & Isolation

Identity Federation

Multi Factor Authentication

Short Living Credentials

Access security architecture

Access Security Architecture

Identity Federation

AWS Console

SAML 2.0Roles from AD Group

Group Name: Account-Nr. + IAM Role

MFA

IAM

Short Living Credentials

MFA

CLI / SDK

STS

IAM

SAML 2.0Roles from AD Group

Group Name: Account + Role

scripts forcredential retrieval

Access Control & Isolation

AWS Console

MFA

CLI / SDK

Instances

AdminAccess

MFA

Demo

Thank you!

top related

detail & scale 39 - uss enterprise cvn-65lr
Documents
enterprise-scale drupal
Documents
v4l01 (account agent enterprise) - fujitsu...account agent...
Documents
impact investing in small-scale aquaculture enterprise
Investor Relations
enterprise scale continuous delivery
Software
enterprise identity management (eidm) account setup for
Documents
integrate – the enterprise playbook to account-based
Documents
building small and medium scale enterprise
Documents
getting to pull at enterprise scale
Leadership & Management
smalltalk in large scale enterprise architectures
Technology
adopting devops at enterprise scale
Documents
devoxx enterprise scale angular
Software
summer school scale cloud across the enterprise
Technology
enabling enterprise devops at scale
Technology
enterprise scale user provisioning with hiim
Documents
managing the role hierarchy at enterprise scale
Documents
devops: start-up speed, enterprise scale
Documents
medium and small scale enterprise management
Business
cqrs at enterprise scale - graham brooks · 2019-03-24 ·...
Documents
smalltalk in large-scale enterprise architectures
Technology