AWS Cloud Enterprise Strategy Blog
AWS Security Leaders: A Series
Background As an Enterprise Strategist at AWS, I spend the majority of my time in two key areas when I meet with customers: all things digital transformation—people, process, technology, culture, aligning technology investments to business outcomes, cloud migration, organizational change, etc.; and security, compliance, risk, and privacy topics, due to my experience as a former […]
CxO Insight: Reporting Cybersecurity to the Board
by Clarke Rodgers, Enterprise Strategist, AWS Enterprise Strategy Over the last several months, one of the most common discussions I have had with members of the C-Suite is around how to effectively report and/or discuss cybersecurity with the organization’s Board of Directors (BoD) and/or Senior Leadership Team (SLT). Background Before I get into the details, […]
CISO Insight: Every AWS Service Is a Security Service
Amazon Web Services customers have many services to contemplate, and perhaps integrate into their cloud footprint, irrespective of where they are in their cloud journey. The relentless pace of innovation continues to be one of the main attractions for customers with AWS as their cloud provider; knowing that new services and features are always coming, […]
Running a Security Organization in Times of Uncertainty and Change
As part of Verified: Presented by AWS Security, a new video series of discussions with security leaders, Amazon Web Services CISO Steve Schmidt sat down with Noopur Davis, EVP and Chief Product and Information Security Officer at Comcast, to discuss what it’s like to run a large security organization during challenging times. You can watch […]
Building an Effective Security Team: It’s More Than Just Technical Skills
As part of a new video series of discussions with security leaders, Verified: Presented by AWS re:Inforce, AWS CISO Steve Schmidt sat down with Emma Smith, Global Cyber Security Director at Vodafone, for a discussion on the importance of diversity, equity, and inclusion in security teams. Watch the full video on YouTube. Emma, a Diversity […]
The CISOs of Netflix and AWS Discuss Remote Work, Security Culture, and Cats as a Threat Model
As part of Verified: Presented by AWS re:Inforce, a new video series of discussions with security leaders, AWS CISO Steve Schmidt sat down with Jason Chan, VP of Information Security at Netflix, for a broad-ranging interview. Even though we couldn’t be together this year at AWS re:Inforce, we still wanted to create a platform for […]
Use the Cloud to Protect the Cloud: A Holistic Approach to Securing AWS at Enterprise Scale
Note: The following is a guest post from Matt Trentler, an AWS professional services manager from our security, risk, and compliance practice. Introduction by Clarke Rodgers, AWS Enterprise Strategist I often meet with CxOs who understand in principle that a well-architected cloud implementation can be more secure than their current datacenter. However, “How do I build that […]
Data Protection in AWS
One of the most common areas of interest from customer executives regarding their move to AWS is data protection. Data protection can take many forms (e.g., backups, high availability, long-term storage), but the focus for this blog post will be encryption. This post has been co-written with Scott Conklin, an encryption expert from our AWS Professional […]
Security at AWS
When meeting with security, risk, and compliance executives who have yet to start their cloud transformation or who already have multiple cloud workloads in AWS, I am often asked a version of the following question: “While we agree that the cloud is the new normal, it is different than running security on premise in the […]