Sign up to save your podcasts
Or
Share AWS Multi-Account Security: What Netflix Learned
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
AWS Multi-Account Security: What Netflix Learned
🚀 How do you secure thousands of AWS accounts without slowing down developers? Netflix’s cloud security experts Patrick Sanders & Joseph Kjar join us to break down their identity-first security model and share lessons from scaling security across a massive AWS multi-account environment.
In this episode, we cover:
- Why identity, not network, is the best security boundary
- The challenges of least privilege and right-sized access
- How Netflix migrates IAM roles while minimizing disruptions
- The impact of multi-account AWS security strategies
Guest Socials: Patrick's Linkedin +Joseph's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
-Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast
Questions asked:
(00:00) Introduction
(02:05) A bit about Joseph
(02:32) A bit about Patrick
(02:38) Scaling security across multiple accounts
(03:29) Least Privilege is hard
(06:44) Why go down the identity path?
(08:49) Identity based approach for least privilege
(15:43) Security at scale for Multi Account in AWS
(23:54) Lessons from the project
(27:02) What would be classified as an easy migration?
(30:55) How the project has progressed?
(35:01) Automation Pieces that enabled the project
(37:54) Where to start with scaling security across Multi Accounts?
(39:21) Resource Access Manager and how it fits into migration
Resources discussed in this interview:
Accelerate insights using AWS SDK instrumentation Talk
Patrick and Joseph’s Talk - Netflix's massive multi-account journey: Year two
Joseph and Patrick's previous interview on Cloud Security Podcast
View all episodes
By Cloud Security Podcast Team
5
5656 ratings
🚀 How do you secure thousands of AWS accounts without slowing down developers? Netflix’s cloud security experts Patrick Sanders & Joseph Kjar join us to break down their identity-first security model and share lessons from scaling security across a massive AWS multi-account environment.
In this episode, we cover:
- Why identity, not network, is the best security boundary
- The challenges of least privilege and right-sized access
- How Netflix migrates IAM roles while minimizing disruptions
- The impact of multi-account AWS security strategies
Guest Socials: Patrick's Linkedin +Joseph's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
-Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast
Questions asked:
(00:00) Introduction
(02:05) A bit about Joseph
(02:32) A bit about Patrick
(02:38) Scaling security across multiple accounts
(03:29) Least Privilege is hard
(06:44) Why go down the identity path?
(08:49) Identity based approach for least privilege
(15:43) Security at scale for Multi Account in AWS
(23:54) Lessons from the project
(27:02) What would be classified as an easy migration?
(30:55) How the project has progressed?
(35:01) Automation Pieces that enabled the project
(37:54) Where to start with scaling security across Multi Accounts?
(39:21) Resource Access Manager and how it fits into migration
Resources discussed in this interview:
Accelerate insights using AWS SDK instrumentation Talk
Patrick and Joseph’s Talk - Netflix's massive multi-account journey: Year two
Joseph and Patrick's previous interview on Cloud Security Podcast
More shows like Cloud Security Podcast
View all
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
370 Listeners
Risky Business
375 Listeners
The Cloudcast
155 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
637 Listeners
CyberWire Daily
1,016 Listeners
Darknet Diaries
8,010 Listeners
Cybersecurity Today
175 Listeners
Kubernetes Podcast from Google
181 Listeners
CISO Series Podcast
188 Listeners
Practical AI
212 Listeners
AWS Podcast
202 Listeners
Defense in Depth
73 Listeners
Cyber Security Headlines
134 Listeners
Cloud Security Podcast by Google
40 Listeners
Risky Bulletin
44 Listeners