AWS Security Services

Services

Securing Amazon Web Services (AWS) customers.

Assessments and advice

Identify security concerns through an AWS specific audit, sometimes called an AWS pentest. Then document a roadmap for improved cloud security. Learn more here.

Training

Learn advanced AWS security topics in a two day private training course. Learn more here.

Custom development

Integrate logs into SIEMs, write rules and parsers, connect alerts to preferred mediums (Slack, JIRA, etc.) and format their output to ensure efficient responses. Develop tools, write blog posts, and perform R&D as needed.

Contact

Email scott@summitroute.com

Scott Piper has a decade of experience in cyber security, having previously worked at the NSA, as a developer for commercial security products, and as the Director of Security for a startup. He now focuses on improving the security of AWS environments.

He developed flAWS.cloud, flAWS2.cloud, CloudMapper, CloudTracker, Parliament, and cloudtrail-partitioner, is an organizer for the non-profit cloud security conference fwd:cloudsec, and continually feeds back his expertise to the community through open-source tools and blog posts.

Scott is based in Salt Lake City, Utah.

Free AWS projects I've developed

flAWS.cloud and flAWS2.cloud

Interactive tutorial/CTFs to learn common AWS security mistakes.

CloudMapper

A tool for visualizing, understanding, and auditing AWS environments.

CloudTracker

A tool for advising on Least Privileges on AWS.

Parliament

An AWS IAM linter.

cloudtrail-partitioner

A tool to automatically setup Athena for searching CloudTrail logs.