Specialist application security company Appsecco, has announced it will be running a bespoke training workshop at the information security event Black Hat USA 2018, providing attendees with the latest in research, development and trends.

By dzaky murad / Shutterstock.com


Now in its 21st year, Black Hat USA 2018 opens with four days of technical trainings (4th – 7th August), followed by a two-day conference (8th – 9th August).

Taking place over the first two days of the event, on August 4th and 5th, Appsecco’s training session, entitled, “Automated Defense Using Serverless for AWS, Azure & GCP” has been designed to help delegates understand how simple cloud services can be utilised to set-up lightweight systems for automated security defence.

With the big three IAAS Cloud Providers (AWS, Azure & GCP) each offering something slightly different, as part of this hands-on training Appsecco’s security experts will not only cover what the essential components of an automated security defence set-up should be but also how to implement them across each provider.

Attendees will also learn how to defend their cloud infrastructure using Serverless technologies and ElasticStack. ElasticStack collects, analyses, logs and triggers alerts based on a configured rule-set, while Serverless drives the defence to perform automated blocking and is configured based on the use case and type of attacks. The current Serverless solution works on AWS, Azure and GCP and can be extended for other providers and custom solutions such as in-house firewalls and IPS.

Appsecco’s Automation and Security Expert, Madhu Akula, will be hosting the workshop alongside Appsecco’s Security Engineer, Subash SN. Each possess extensive experience in the industry, ranging from client facing assignments building scalable and secure infrastructure, to publishing industry leading research.

Appsecco’s co-founder, Gwilym Lewis, says of the agreement: “We’re thrilled to be bringing our cutting-edge, industry-leading security training to Black Hat USA. Day one starts by setting the stage for automated defence by tackling centralised monitoring and alerting systems, followed by a focus on day two on advancing the set-up by adding Serverless stack to defend against the infrastructure based on near real-time alerts to match DevOps speed.”