This week i was attending the first AWS:Reinforce in Boston. This event was more than an expected event by the AWS community. It was an event expected by the Cloud security specialists community. The fact is that by having met several colleagues and spoken with several people, many participants did not have any real experience in AWS but was using this convention to step up their skills in AWS.
The convention was organized with several types of activities. There was both a CTF and classical sessions, but also many Workshops. There were even Builders Sessions, which were meetings made at 3 or 4 around a table with a specialist to discuss a particular subject. These Builders Sessions were so popular that it was very difficult to get free seats.
The negative points of the convention: several workshops were clearly too simple even though they were defined as advanced. I heard several comments that the AWS:Reinvent workshops were clearly more advanced. This was not the case for all of them, however, because I had the chance to participate in a very good Workshop on Cognito as well as on GuardDuty. Did AWS want to remain accessible for its first edition without knowing the real level of maturity of the Security community? I don’t know, but it will be a focus for future editions. Another negative point: too much content and not enough time. Having several types of content in parallel is very interesting, but over only 2 days, I had to give up several sessions or Workshops that I really wanted to follow. I sincerely believe that 3 days could be fully filled with all security topics and also the CTF.
The CTF is one of the positive points. Fun, good level and well organized I particularly appreciated this one even if the lack of time did not allow me to go very far in the challenges.
The organization is also very well done. The mobile application lacked a little responsiveness but overall there were many guides available in the Boston Convention Center and after a few hours we could easily navigate between the different activities.
I discovered several interesting new security solutions in the booths and there were many well-known speakers in the AWS security community. Overall, the editors present were mainly providers of governance and cloud visibility solutions. This was clearly this year’s trend, mastering the configurations and resource inventory in your cloud environments. I expected more CASB solutions, but in fact, the second trend was occupied by container security solutions such as Aqua and Twistlock. On the CASB market, I noticed the presence of Bitglass and the excellent Netskope.
So, was my participation in this event worth it? Definitely yes. Regardless of the fact that we felt like we were participating in a historic event in the AWS Security community, there was a lot of interesting content and I therefore recommend it for all security specialists interested in the Cloud.
So I say see you next year for the AWS:Reinforce edition 2020 which should be held in Houston !