AWS re:Invent 2018: How Vanguard Matured IAM Controls to Support Micro Accounts (SEC324)
Published on Nov 29, 2018
In this session, learn how Vanguard has matured their IAM controls and automation to support a micro-account strategy, providing further agility to developers while reducing blast radius and improving governance. You learn how Vanguard uses STS Federation at the OU level, builds common roles across all micro accounts, implements AWS Organizations SCPs, and uses different network control zones for admin vs. non-admin functions. Vanguard also shares how they are using AWS Lambda to block escalation of privilege. Complete Title: AWS re:Invent 2018: IAM for Enterprises: How Vanguard Matured IAM Controls to Support Micro Accounts (SEC324)
58:01
AWS re:Invent 2018: How Nubank Automates Fine-Grained Security with IAM, AWS Lambda, & CI/CD FSV325
58:01
56:37
AWS re:Invent 2018: How Vanguard Matured IAM Controls to Support Micro Accounts (SEC324)
56:37
55:36
AWS re:Invent 2018: [REPEAT 1] Become an IAM Policy Master in 60 Minutes or Less (SEC316-R1)
55:36