Security by design is a deliberate process of ensuring security is built into the entire process versus "bolted on" after the fact. We will discuss the shared security responsibility model: both the vendor and the customer are accountable for the security of the cloud. We will address organizational culture and change before moving to the cloud, reviewing people, processes, and technology, and explore the built-in and readily extensible audit capabilities of AWS and how it can enhance the security posture of a migration. Finally, we will review our journey of implementing security at every layer.

Outcomes: Understand the importance of addressing organizational culture before attempting a cloud migration * Learn about the various components of a cloud security model and how to implement them * Understand how security by design allows an organization to improve its security posture as it operationalizes its cloud environment