Event 5

Summary Report: “Cloud Mastery #3: Cloud Security”

Event Overview

  • Event Name: Cloud Mastery #3 - Cloud Security
  • Date: April 10, 2026
  • Role: Speaker
  • Topic: Fundamentals of AWS security services (IAM and SSO)

This event focused on the critical aspects of Cloud Security, exploring the foundational services and architectural patterns required to build secure and scalable systems on AWS.

Detailed Session Content

1. Overview of Cloud Security

Cloud security is a shared responsibility between AWS and the customer. Understanding the fundamentals is the first step toward building resilient infrastructures that protect data and resources.

2. Fundamentals of AWS Security Services

The session explored the core security services provided by AWS that enable organizations to implement robust security postures:

  • Identity & Access Management (IAM)
  • Single Sign-On (AWS IAM Identity Center)
  • Network and Application Protection mechanisms

3. Identity & Access Management (IAM)

Concept: IAM is the foundation of security in AWS, allowing for the management of access to AWS services and resources securely.

  • Users, Groups, and Roles: Implementing granular access controls.
  • Policies: Utilizing JSON-based documents to define permissions.
  • Least Privilege Principle: Ensuring identities only have the permissions required for their tasks.

4. AWS Single Sign-On (SSO)

Concept: Now known as AWS IAM Identity Center, SSO simplifies access management across multiple AWS accounts and business applications.

  • Centralized Management: Assigning users access to all their AWS accounts and applications from one place.
  • Improved Security: Reducing the complexity of managing multiple credentials.

5. Network & Application Protection

In addition to identity management, the event covered strategies for protecting network traffic and application endpoints:

  • Utilizing AWS Shield and AWS WAF for application protection.
  • Implementing robust networking security groups and ACLs.

Important Insights

  • Security as a Foundation: Security should not be an afterthought but rather a key component built into the system from the beginning.
  • The Value of Community Interaction: Engaging with the audience through questions and perspectives reinforces that learning and sharing technical knowledge is a two-way journey.
  • Identity as the New Perimeter: In the cloud, identity management (IAM and SSO) has become the primary boundary for securing resources.

Cloud Mastery #3