
Recap: HCLS TDIR Immersion Day with AWS
AWS HCLS Immersion Day: Strengthening Security with Threat Detection, Incident Response, Compliance.
Shannon Brazil
Amazon Employee
Published Oct 21, 2024
Our recent HCLS TDIR Immersion Day was a deep dive into AWS’s security services and best practices, designed to empower customers in the healthcare and life sciences (HCLS) sectors. The event covered critical areas such as threat detection, incident response, compliance, and data protection, with engaging sessions and hands-on workshops led by AWS experts.
The day started with a keynote address from Angelo Comazzetto, who set the tone for the immersion day by highlighting the evolving threat landscape. He discussed how AWS’s shared responsibility model can help customers bolster their security posture. The keynote also focused on AWS’s commitment to providing scalable security solutions, backed by cutting-edge threat detection technologies and incident response frameworks.
Participants chose from two critical sessions:
- Detecting Modern Threats at Scale: This session, led by Brandon Rooks and Srikanth Reddy, explored the modern cybersecurity landscape and the AWS tools, like GuardDuty and Security Hub, that customers can use to detect and respond to evolving threats
- Foundations of Incident Response: We covered key principles of AWS incident response, with a focus on proactive planning, detection, and remediation.
This engaging chat featured Shannon Brazil, an AWS Incident Responder, who shared insights on handling real-world security incidents using AWS services like CloudTrail, GuardDuty, and Detective. Shannon highlighted how AWS’s internal incident response team collaborates with customers to resolve security issues.
Check out Stronger Together session below for a deep dive on this collaboration!
Two more breakout rooms followed:
- Streamlining HIPAA Compliance for HCLS: Led by Snehal Nahar, this session showcased how AWS Config and Audit Manager help automate and streamline compliance workflows for HIPAA
- Investigating Threats with CloudTrail Lake: John Agustin guided attendees through using AWS CloudTrail Lake to investigate user activity and API usage. This session focused on how to gain detailed insights into potentially malicious activities in your environment
The afternoon sessions addressed current and future cybersecurity threats:
- Ransomware Detection and Prevention: Allan Holmes presented best practices for defending against ransomware in AWS environments
- Automating Response with Security Hub: This session, led by Kafayat Adeyemi, covered how Security Hub can automate incident response and streamline remediation processes
To wrap up, the final breakout rooms covered:
- Eliminating Long-Term Credentials: A session led by Matt Howard focused on replacing long-term credentials with temporary security credentials using IAM roles.
- Building Recovery Resilience with AWS Backup: Sabith Venkitachalapathy demonstrated how AWS Backup can fortify your disaster recovery strategies, especially in a ransomware attack scenario.
Tricia Krasinski closed the day by outlining how AWS Support serves as a trusted security partner for organizations at all stages of their cloud journey. She emphasized AWS’s security offerings, including proactive monitoring and incident detection. See Slide deck here.
The day concluded with an interactive AWS Security Workshop, where participants could apply the knowledge they gained by engaging with hands-on labs and exercises focused on automating incident response, managing HIPAA compliance, and protecting workloads.
This immersion day highlighted AWS’s ability to help organizations securely scale their operations while maintaining compliance and responding to threats in real-time. For those unable to attend, you can find all the resources linked throughout this article, including the slide decks and recorded sessions.
Any opinions in this post are those of the individual author and may not reflect the opinions of AWS.