Hands-On Workshop: Protecting Cloud Assets and Improving Security

  • Wednesday, 16 Aug 2023 10:00AM EDT (16 Aug 2023 14:00 UTC)
  • Speaker: Simon Vernon

A practical application experience to demonstrate improvement of security posture and increase in visibility of assets and applications. When a system designed for on-premises operation is migrated to a public cloud, it is exposed to additional vulnerabilities and risks of exploitation. This workshop will delve into the realm of cloud native security solutions and techniques, to demonstrate how it is possible to protect such systems that are otherwise considered indefensible particularly in the case of ‘Lift and Shift’.

LEARNING OBJECTIVES:

  • Identify gaps in visibility for web application and storage platform
  • Activate Insights for app visibility
  • Deploy and configure Log Analytics, Defender
  • Learn how to deploy Application Gateway to defend both the Web App and the Storage accounts
  • Implement WAF technologies

PREREQUISITE KNOWLEDGE:
None.

SYSTEM REQUIREMENTS:

  1. A modern web browser*
  2. An Azure account with full administrative ownership
  • If you have been assigned an Azure account by SANS for a course this is fine to use for this workshop. 
  • If you have an Azure account already, you can use this but be aware you will be hosting a vulnerable web application created by the workshop code.
  • If you need to register a new Azure account, you can create a Pay-As-You-Go Azure subscription from here: https://azure.microsoft.com/en-gb/pricing/purchase-options/pay-as-you-go/?srcurl=https%3A%2F%2Fazure.microsoft.com%2Ffree – A valid email address and credit card are required to subscribe to Microsoft Azure.
  • You are liable for any expenses associated with hosting objects and services within your azure account.  
  • For this workshop, the costs will be less than $5 US.
  • A full teardown script is provided at the end of the workshop to delete all assets created.
  • Steps to delete subscriptions at the end are also provided.

*No VM is required

This workshop supports concepts from SEC488: Cloud Security Essentials.