June 29, 2020
Giveaway: best resources for infrastructure security!
❓ How being minimalistic works?
🚢 Have you done the ground work right?
I often get asked about infra security best practices in calls and reviews.
At server layer it becomes a critical aspect of your organization’s overall security posture.
Although, when things are at scale you might not want to do all these manually and want to approach an already existing solution or think about automating this as IaaC.
There are some ground rules or basics you could do to have things in place.
Outline of talk:
Minimalistic by design: Hardening
Securing network traffic and remote access
Network/vulnerability scanning and testing tools
Auditing/Monitoring the system
https://www.canva.com/design/DAEAecc3oFQ/view
References and motivation: https://www.digitalocean.com/community/tutorials/how-to-monitor-your-system-security-with-osquery-on-ubuntu-16-04