Ottawa IT Community

Itinerary - 12:00 to 12:15 Networking and Pizza - 12:15 to 4:15 Workshop Azure Cloud Security Workshop Have you ever wondered how security is different ‘in the cloud’? Where do you store your certificates? Your keys? Your connection strings? How can you see what’s going on with your resources? How do you patch? Where can you see your server configs other important information? How do you manage an security incident? How do you even know that you’re having an incident? This first half of this workshop will be a demo where the audience follows along, the second part will be for audience members to build things and secure them, in Azure. Demo will include: - Complete Azure Security Centre walkthrough - Policy and compliance, including subscription coverage Resource Security Hygiene - Azure Security Centre Recommendations (mitigation of one or more items, dependent on time) - Threat Protection, Alerts and Threats - Applying System Updates - Key Vault Audience Participation - (people who do not have a laptop can follow along with the teacher) Create a DevOps project, from scratch, and publish to the internet. (20-30 mins) - Turn on Security Centre (5 mins) - Check your security configurations and settings to ensure your new app is safe. (10 mins) - More as time permits. What you will need if you want to participate after the demo: 1. A laptop running any modern operating system (Mac OS, Windows, Linux) 2. Modern web browser (Safari, Edge, Chrome, FireFox) 3. Wi-fi and internet 4. An activated Azure Trial. Please activate your trial in before coming to the workshop. The workshop will not wait if you have not activated your trial. To activate your free Azure trail for this workshop please go here: https://aka.ms/Azure-Cloud-Security-Workshop Bio Tanya Janca is a senior cloud developer advocate for Microsoft, specializing in application security; evangelizing software security and advocating for developers through public speaking, her open source project OWASP DevSlop, and various forms of teaching via workshops, blogs and community events. As an ethical hacker, OWASP Project and Chapter Leader, software developer, effective altruist and professional computer geek of 20+ years, she is a person who is truly fascinated by the ‘science’ of computer science.