HANDS-ON WORKSHOP

Live DevSecOps Workshop with Snyk & AWS

Tuesday, June 4th | 4pm - 5:30pm BST

AWS Immersion Day: Secure Container Workloads In Build-Time With Snyk

Containers help teams build and scale applications more quickly, but they can also introduce security risks.

Join security experts from Snyk and AWS LIVE at Infosecurity 2024 to learn how developer teams are collaborating with operations and security teams to secure container workloads from source code to runtime. This hands-on workshop will demonstrate how a malicious actor might exploit a vulnerability in your container application, then give you clear advice on how best to mitigate and remediate those same security issues, early in development.

We'll walk you through identifying threats, vulnerabilities and misconfigurations that are common in cloud-native applications today, with a focus on fixing issues, not just finding them. The workshop will also cover how to pinpoint must-fix open vulnerabilities in development using runtime signals, while also effectively protecting workloads in production.

In this workshop, you will:

Detect and fix vulnerabilities in containers and source dependencies in Amazon ECR and Amazon EKS workloads during the development phase
Upgrade to recommended, secure base images
Automate runtime threat detection and alerting across containers and Kubernetes
Secure Kubernetes workloads by prioritizing vulnerabilities in container packages used at runtime to eliminate noise

Pre-requisites:
In order to complete this workshop, you should have the following:

Create a free Snyk account
Basic proficiency in creating/accessing an Amazon EKS cluster

By the end of the session you’ll have exploited and fixed two vulnerabilities and gained insights into best practices for securing your containerized workloads on AWS.