Today, I want to share with you the sessions and events I'm more excited about as an AWS Community builder with a focus on the best way to operate securely in AWS.
Launched in 2012, re:Invent is the annual developer conference hosted by Amazon Web Services.
With more than 60000 attendees and 2500 technical sessions, it's the most entertaining week of the year in Las Vegas.
I want to thank Chris Farris and his post for inspiring me to write this article.
The link to the session brings you directly to the Session Planner. If it's hard to schedule your re:Invent Calendar, try to use the unofficial planner.
Chalk Talks are highly interactive sessions with a small audience.
Each begins with a short lecture (10–15 minutes) delivered by an AWS expert, followed by a 45- or 50-minute Q&A session with the audience.
This is by far my favorite session type for the event, and this type of session WILL NOT be available later on YouTube AWS Channel
AWS re:Invent breakout sessions are lecture-style and one hour long. Those sessions are made by experts and will be available a week after the event in a dedicated playlist on YouTube.
Be sure to follow one if you wanna meet the speaker or ask anything from him, otherwise, you have the opportunity to learn the topic easily the week after.
Builders Sessions are small-group sessions led by an AWS expert who guides you on new technology, followed by a hands-on practice of the topic.
- COP305 - Best practices for organizing and operating on AWS
Bianca Lankford is the Senior Director of Global Cloud Engineering @ Warner Bros. Discovery. I'm interested to hear more about a big enterprise relying on Tools and Best practices to manage a complex cloud environment.
Managing and operating cloud environments from multiple business units can be challenging. In this session, hear from Bianca Lankford, Senior Director/Global Head of Cloud Engineering & Governance from Warner Brothers Discovery, about how they organized their cloud environment to allow teams to develop with agility while being able to manage and operate their applications in a secure, automated, reliable, and cost-effective way. See how you can use AWS Organizations and AWS Systems Manager to operate your applications at scale, manage mergers and acquisitions, and develop governance as a product for your environment.
- SEC001 - Building more AWS accounts? One IAM Identity Center to rule them all
Jonathan VanKim is a Security Specialist in Cloud Systems Architecture @ AWS.
The peculiarity is that the session will be at the AWS Village in the Demo Theater. Having a networking opportunity to better access the Cloud in an Organization from a single place.
Want to simplify your workforce access with AWS IAM Identity Center (successor to AWS Single Sign-On)? This session explores how to use AWS Managed Microsoft AD integrated with IAM Identity Center. Learn how to quickly and simply manage your workforce users and scale in your AWS organizations.
- BOA202 - Take these open-source tools on your AWS adventure
AWS Developer advocate Curtis Evans and Darko Meszaros will introduce Build on Live during the event, and I can't wait to know the best Open-source tools they will explore. I'm hoping to see Leapp there, too (" Making my AWS adventure easier” was one of the main points that brought me to build the OSS tool)🙂
You've set out on a grand adventure to learn, build and expand on AWS. Like any good adventure, it has its challenges. Time to gear up! Grab your best tools and gear to help you on your way. In this session, have a look at open-source tools that can help make your AWS adventure easier. See something for security and permissions, something for cost management, and a few more things for building in the Cloud—tools like Infracost, IAMLive, and more.
- COP323 - Delegating access in a multi-account environment with IAM Identity Center
This is a Chalk talk. A smaller group talks about the problem and how to address it together. In this case, I'm particularly interested in seeing ABAC models with IAM Identity Center. Before this session, I advise watching this amazing session by Quint Van Deman (One of the best sessions I've ever attended).
In this chalk talk, learn about delegating access management with AWS Organizations and AWS Control Tower using AWS IAM Identity Center. Using customer-managed policies and permissions boundaries, you can enable a decentralized access management model with permissions guardrails that enforce coarse-grained authorization standards that apply in both role-based and attribute-based access control (RBAC and ABAC) models.
- COP318 - Setting up controls at scale in your AWS environment
Michael St.Onge, senior security manager @ AWS, will speak about the Control tower's ability to delegate access and make it easy to implement a least-privilege permission easier for AWS Users
Companies are challenged with balancing compliance and security requirements with the desire to allow engineers to make their own design choices. Many companies take an allow-list approach: restricting developer access to AWS services until risks are defined and controls implemented. In this session, learn how to use AWS Control Tower features to meet control objectives and reduce the time it takes to approve AWS services for use.
- NFX305 - Reimagining multi-account deployments for security and speed
Netflix has proven to be one step forward in many fields among Cloud operations in a multi-account strategy. Netflix Tech blog is one of my favorite resources to be on top of technology ideas. Every time I go back to this presentation by Travis McPeak and Will Bengtson to explain the level of excellence of Netflix
This time they will present a new paradigm for a multi-account deployment, take it.
In this session, discover a new paradigm for multi-account architecture based on decoupling a workload's identity and permissions from its underlying cloud infrastructure. Efforts to segment cloud environments are often stymied by complex migrations and excessive operational overhead, hindering organizations from capturing the desired security and scalability benefits. Join us to learn how Netflix is deploying applications in isolated AWS accounts without relocating their compute or network resources, and discover how they are increasing developer velocity along the way.
- NFX302 - Accelerate insights using AWS SDK instrumentation
How could you figure out an application's identity across an AWS account? It’s a question I ask myself often, and I'm intrigued to figure out the Netflix way to do so.
Migrating an application's identity across AWS accounts requires a clear picture of its identity-resource relationships. In this session, learn how Netflix filled gaps in cloud data sources by instrumenting AWS SDKs to create new categories of visibility.
I won't do any pitch for re:invent, but I will present Leapp at the Open source Zone (Third floor of the Venetian near San Polo and the Press area) on Wednesday from 1 pm to 3 pm.
I will speak about my open-source project Leapp and how to better operate in Cloud daily as a CloudOps.
My advice is to be prepared and look at the Partner Expo map at the Venetian before landing in Vegas.
Could you make time for a meeting with your professional network? Let people know you'll be at re:Invent (changing your Twitter and LinkedIn name is an excellent point to start from).
Re:Invent, to me, is a community event and is the yearly opportunity to meet with all the Top of the Ops community we have built with Open-source.
The amount of Cloud experts from all around the world is a unique opportunity to peer and create long-term connections with many people, and this is the best part of re:invent. Don’t miss having fun and visiting all the best of Vegas.
So please, text me if you want to grab a drink together! I’m a big fan of Bourbon and Rye Whiskeys 🥃 and I will be happy to connect with you in front of a good cocktail or beer 🍺!
I hope to see you all in Las Vegas!