can't really see. the resolution is so bad.

I use a tool that helps with so many points you mentioned - ArmorCode - normalizes across scanners and internal data sources like CMDB + Reprioritizes based on context of internal systems + Automates manual remediation tasks + Tailored reports to various stakeholders. Check it out!

this is a big help but can you have a session where you filter the logs from the aws side before sending it to sentinel? is it even possible? how?

Appreciate the workshop. Much appreciated!

Thanks for the free resources! Great talk and walkthrough.

Great content, thanks Jon!

03:00 - The moment I read/heard about this video my immediate thought was "Er, just use prepared statements?", and wondered if there was going to be more than that to this video. I'll watch the rest now :) . Although I do note that in *PERL*, the last time I did that years ago, it was a bit of a pain if you had a use case where you wanted the *same* variable to be bound in more than one place in the statement. You couldn't do that and the workaround I found was to just copy the value into a temporary variable and reference *that* in the 2nd use (and so on with second temporary for a 3rd use etc).

Great

Studying for GCFR now

Great stuff, Brandon!

Thanks Serge, I'm enjoying the content!

ah, declare -f ! That solves a mystery. Thanks Brandon!

✌️ 'Promo SM'

Where can i find the repo with the files?

Where can i find the manifests ?

Thank You Brandon

Sounds like he's in tunnel of water.

Clearly explained and did not put me to sleep. Quite a feat for a very dry subject.

please do you teach powershell? i really enjoyed your teaching you are a great teacher, you should do more teachings smiles

So why doesn't Terraform apply catch the manually created Security Group before and after the --refresh-only?

Excellent presentation.

This conversation was great. Thank you.

This was awesome!! You mentioned providing access to your slides; however, I don't see any links for accessing them... --A

Thank you, this was well presented and easy to follow.

when are you gonna post again?

I took SEC588 with some engineers and architects from Sketchers. A very impressive group that knows their stuff! Thanks for the interview.

Are there any prerequisites for this course? I have a background in web development and am interested.

Thank you for this presentation. Really good quality.

this is awesome, really need some more videos on Azure sentinel.

Thank you for uploading this! This is exactly the kind of work I hope to be doing once I graduate

W mans

Maybe setting up a script on the server that will digest the tail of the log every minute or so. Then report it to the SEIM. If there are indicators then store the verbose log and kick off an alert.

Remarkable presentation.

Excellent one Shaun.This just keeps getting interesting 😎

blurred images. could not see any of the demo clearly.

The only step missing the documentation is to enable Security Hub before we can go to the summary page.

Great presentation !

I find this section (⚠2:45-3:50) VERY important.😐

11:35-12:05 I'm glad you interpreted what recommendations or guidances are because people generally tend to not understand that. It's not law. It's a tested best practice or method to ASSIST you towards your goals successfully or with excellence.

thanks keep going we are listening

good session and very helpful.

Interesting perspective. The notes suggest the course eventually teaches the use of terraform to secure cloud environments. Why was terraform chosen over using the native IAC services for each provider?

That audio was killing me thanks to that person that stepped in and told him there was a problem

That's something fresh. Amazing!

Thank you for this video! I didn't know the PuTTy Agent needed to run in the background to successfully connect.

Great talk love the Pet's analogy

33:16 Cloud Security Posture management - CSPM, instead of C'P'SM

Great webcast!

SANS

P r o m o S M