YoVDO

IAM The One Who Knocks

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Risk Management Courses Identity and Access Management (IAM) Courses Cloud Security Courses Permissions Management Courses Identity and Access Management Courses Multi-Cloud Environments Courses

Course Description

Overview

Explore the hidden risks of managing identities and access in multi-cloud environments through this 41-minute Black Hat conference talk. Uncover access flaws and misconfigurations that attackers can exploit to gain unauthorized access to sensitive information. Delve into the inner workings of various cloud providers' Identity and Access Management (IAM) layers, highlighting key differences between services. Learn how inconsistent entitlements across cloud resources can lead to unintended access and how shared responsibility model confusion enables privilege escalation. Gain insights into AWS managed policies, Azure managed policies, GCP basic roles, cloud platform access scope, and logging limitations. Discover practical strategies to limit mistakes, build proper permissions, and enhance security in multi-cloud setups. Witness a demonstration and walk away with actionable knowledge to improve your organization's cloud security posture.

Syllabus

Intro
Context
Identity
Permissions
Nonhuman identities
Hybrid identities
AWS managed policies
Azure managed policies
GCP basic roles
Cloud Platform Access Scope
Logging Limits
Azure Logs
MultiCloud Conclusion
What Can We Do
Limit Mistakes
Building Permissions
AccessUndenight
Demo
Conclusion


Taught by

Black Hat

Related Courses

Essential Google Cloud Infrastructure: Core Services
Google Cloud via Coursera Essential Cloud Infrastructure: Core Services en EspaƱol
Google Cloud via Coursera Managing Security in Google Cloud
Google Cloud via Coursera Deploying SAP on Google Cloud
Google Cloud via Coursera TOTAL: CompTIA CySA+ Cybersecurity Analyst (CS0-003)
Udemy