This guide for re:Inforce attendees is tailored for executives and founders who are looking to implement comprehensive security strategies. As a CTO and co-founder, I know executives have unique considerations when facing cloud infrastructure and platform security decisions. My activity recommendations are offered based on different stages on the security journey: 1 for beginners, 2 for intermediate, and 3 for advanced.
DPP101 – Building privacy compliance on AWS
This session is exceptional for those founders or executives who are just starting. It will help you understand the regulatory landscape around your business, prepare to face the challenges of privacy management from a design point of view, and learn how AWS services can help you.
TDR201 – Running effective security incident response simulations
Most of the time we won’t be involved in a security incident, but then how can we be sure that our incident response procedures are effective? Simulations are the best learning opportunity to prepare because they provide realistic and safe scenarios to model, evaluate, and evolve your organization’s playbooks. This session provides knowledge that can help you begin checking your organization’s incident response process, procedures, communication paths, and documentation.
GRC203 – Panel discussion: Continuous compliance and auditing on AWS
This session is a good opportunity to hear from enterprise senior executives and AWS Partners about their path to success with compliance and auditing on AWS.
GRC205 – Crawl, walk, run: Accelerating security maturity
This session will help you understand where you are on the cloud security journey, ask yourself where you want to end up, and lay out a roadmap based on lessons learned from many organizations to implement an effective and efficient security posture.
GRC206 – Responsible AI for security
Artificial intelligence (AI)–based technologies have changed the world in many ways. In this session, you will learn how artificial intelligence tools can collaborate with security teams to reduce risks effectively and efficiently.
TDR301 – A proactive approach to zero-days: Lessons learned from Log4j
Living with a system vulnerability that has been disclosed but not yet patched is one of the most terrifying scenarios for security teams. Learn about proactive measures that you can implement now to better prepare for future zero-day vulnerabilities.
DPP234 – Data protection practices to meet resiliency objectives
Learn data protection best practices and strategies to mitigate risk and address resiliency in business-critical applications by using AWS services, such as AWS Key Management Service (AWS KMS), AWS Identity, and Access Management (IAM), AWS Elastic Disaster Recovery (AWS DRS), and AWS Backup. Learn how to protect your data using AWS security controls to address resiliency goals.
NIS336 – Meet your data residency and security requirements with AWS solutions
Understand how to host workloads and data that needs to address geopolitical boundaries and can’t move to an AWS Region due to data residency or security requirements.
GRC271 – Executive security simulation
This workshop will let you experiment with the security executive point of view in a game-like simulation. During this hands-on experience, you will make decisions on strategic investments in security, risk, and compliance management, and you will experiment with the impact on your secure cloud adoption.
DPP273 – Architecting for privacy on AWS
Learn how to build on AWS by applying architecture patterns focused on privacy preservation with a regulatory-agnostic approach.
GRC373 – Designing resilience with compliance in mind
In this workshop you will learn how to tackle the challenge of build cloud-native solutions while meeting your resilience targets for compliance in critical business functions. In this workshop, learn how to define, validate, and track the resilience of your applications using AWS Resilience Hub.