强化云安全：Meta 对大规模实施 AWS 安全控制的见解.pdf

1、 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.SEC308Fortifying the cloud:Metas insights on implementing AWS security controls at scale.Peter NieuwenhuizenRobin RodriguezSyed ShareefSr.Engineering Manager,MetaSr.

2、Solutions ArchitectAWSSr.Security Solutions ArchitectAWS 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.AgendaPlaybook for AWS Cloud SecurityThe Scale ChallengeHow Meta secures their Cloud environmentWhats next and lessons learned 2025,Amazon Web Services,Inc.or its affiliates.Al

3、l rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Playbook for AWS Cloud Security 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.What does it look likeWhat are the characteristics of Security at ScaleAutomatedProactiveFederatedResiliency drivenL

4、earning CulturePFARL 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Identity domainIdP+SSOPoliciesService gatingTo provide scalable secure access to your users to AWS accounts and applicationsTo enforce the guardrails on your AWS environmentTo provide for secure low friction adop

5、tion of AWS services 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Idp+SSOAWS CloudAWS IAM Identity Center Azure Entra IDActive DirectoryYour Identity SourceGoogle Workspace 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Idp+SSO1Connect your identity source o

6、nly onceAWS CloudAWS IAM Identity Center Azure Entra IDActive DirectoryYour Identity SourceGoogle Workspace 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Idp+SSO1Connect your identity source only once2Manage access to AWS applications AWS CloudAWS IAM Identity Center Azure Entra