DPP101 – Building privacy compliance on AWS

This session provides a great baseline for privacy-by-design thinking. This is a key step for identifying the data you’re processing and storing in your business. By adopting this approach, you can set up stronger governance and a continuous compliance practice.

DPP302 – Navigating AWS documents from a data protection and privacy view

We’ve needed this session for a while. The focus is simple: how does AWS help you protect your data in the AWS Cloud? This session lays out what steps AWS takes and where to find the documentation and proof of those activities.

DPP305 – To Europe and beyond: Simplify privacy needs in new markets

The title may not be the most exciting, but this session covers a serious challenge for most global business: navigating compliance with EU data-transfer requirements. In this session, AWS experts will help you understand the requirements and how to navigate them using the tools available in the AWS Cloud.

DPP308 – High assurance with provable security

The AWS provable security initiative has been making waves the past few years. From analyzer products to a ton of improvements behind the scenes, this team’s work has had a major impact whether you know it or not. This session highlights some of the key features built from this initiative and how you can use them to improve your security posture.

GRC201 – Learn best practices for auditing AWS with Cloud Audit Academy

Nothing puts your governance and compliance efforts to the test like an audit. Understanding how audits are conducted is key to making sure that your practice aligns with expectations. This session explores the fantastic content in the Cloud Audit Academy and how it helps shape how auditors approach their work in the AWS Cloud.

GRC205 – Crawl, walk, run: Accelerating security maturity

As much as we’d all like to have a completely automated security practice immediately, that isn’t going to happen. This session walks through a step-by-step roadmap to security automation. It takes a pragmatic approach and explains how to get the most out of the features and functionality already available in the AWS Cloud.

GRC401 – Risk management in machine learning and data science

This in-depth session looks at the unique challenges facing machine learning and data science environments. The vast amounts of data used with these approaches makes governance critical. Learn about how you should be approaching the security of these environments so that you can maximize the return on your investment.

IAM309 – Designing a well-architected identity & access management solution

Identity and access management is the single most important aspect of any security practice in the cloud. This session isn’t focused on compliance or governance but on making sure that your solution is a foundation that you can build on now and moving forward.

NIS306 – Automating patch management and compliance using AWS

Every time there’s a new vulnerability, the first thing you’ll hear from everyone is, “Patch it.” Despite being an easy concept to understand, effective patching is a constant logistics challenge. This session looks at how you can automate much of this process while recording the evidence needed for your continuous compliance needs.

DPP355 – Codify your compliance: Classifying your data at scale

Classifying your data is one of the top problems when it comes to governance and compliance. This builders’ session explores how you can combine Amazon Macie, Amazon EventBridge, and AWS Step Functions to automate a lot of the heavy lifting for data classification. It’s these types of solutions that really take your practice to the next level.

SEC203-L – Security mindfulness

You can’t run a strong compliance and governance practice without good people. This leadership session explores how you can identify and invest in security talent to build out a top-notch team.