How to Build a Data Protection Strategy in AWS

As more organizations store sensitive data in the cloud, and as data protection regulations become more stringent, security personnel should consider developing a strategy to protect their assets in the AWS cloud. However, this poses many important questions, such as: How can I securely migrate data from on-premises storage volumes to AWS services, or from existing AWS services to new AWS services? What controls are needed? And what performance requirements must be met?

In this on-demand webinar, SANS analyst Dave Shackleford explores the controls that are critical to data security and how to scale on-premises data protection strategies to the cloud.

On-demand Attendees will learn:

  • How to use data loss prevention, encryption, access controls, user behavior analytics, and data life cycle controls as integral parts of a data protection strategy
  • Key steps in scaling data protection to the AWS cloud, and which AWS storage and database services can be used to establish data encryption capabilities
  • Ways to minimize common risks from human error with a combination of AWS and third-party services, and how organizations are using both to secure data in AWS


Dave Shackleford is a SANS analyst, senior instructor, course author, GIAC technical director, and member of the board of directors for the SANS Technology Institute. He is the founder and principal consultant with Voodoo Security, and has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.


David Aiken is a Solutions Architect Manager at AWS covering AWS Marketplace, Service Catalog, Migration Services, and Control Tower. He leads a team of specialist AWS SAs that help customers implement security and governance best practices using native AWS Services and Partner products. He is an AWS Certified Solutions Architect and his skills include cloud computing, enterprise architecture, agile methodologies, web services, and software design and development. David has also worked as a product manager, technical specialist, and architect evangelist.


About the SANS Institute:

The SANS Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals around the world—from auditors and network administrators, to chief information security officers—sharing the lessons they learn and jointly finding solutions to the challenges they face.

About AWS Marketplace:

AWS Marketplace is a digital software catalog that makes it easy to find, try, buy, deploy, and manage software that runs on AWS. AWS Marketplace has a broad and deep selection of security solutions offered by hundreds of independent software vendors, spanning infrastructure security, logging and monitoring, identity and access control, data protection, and more. These products can be integrated with AWS Services and other existing technologies, enabling you to deploy a comprehensive security architecture across your AWS and on-premises environments. Visit to learn more.

*The views and opinions of the SANS Institute and their presenter, Dave Shackleford, are their own, and do not necessarily reflect the positions of AWS.