Steve Schmidt, chief information security officer of AWS, addresses the current state of security in the cloud, with a particular focus on feature updates, the AWS internal "secret sauce," and what's on horizon in terms of security, identity, and compliance tooling.
35. Investor Protection – Market Integrity
• Write and enforce rules governing the activities
of 3,800 brokerages with 634,000 brokers
• Examine for compliance with those rules
• Foster market transparency
• Educate investors
• FINRA uses Big Data and data science
technologies to detect and analyze fraud,
market manipulation, and insider trading across
US capital markets
36. UP TO
75 BILLION
EVENTS
PER DAY
Over
25 PETABYTES
of Storage
Market
Reconstruction
Containing
TRILLIONS of
Nodes & Edges
FINRA Technology
INNOVATING
TO PROTECT INVESTORS AND ENSURE MARKET INTEGRITY
37. Need for Nimbleness
Legacy approach not meeting needs
Market volumes are volatile and
steadily increasing
Exchanges are dynamically evolving
Regulatory landscape is changing
Market manipulators innovate
38. Cloud Architecture Solved Our Problems
Huge capacity
Decouple storage and processing
Consume processing when needed
Manual processes replaced by code
39. Cloud Risk Management
Private data centers have risk
Cloud has equivalent security controls
In fact, for most organizations Cloud
can be more secure
But… you must do it right
40. • Easy micro-segmentation
• Fine-grained entitlements
• Strict separation of duties (SoD)
• Automation = consistent compliance
• Rich audit trail
• Best-of-breed security services (AWS KMS)
• Cloud and DevOps = more rapid patching
• Resilience and multiple recovery options
• Assurance through third-party assessments
• Cloud provider must be secure to survive
Cloud Security – Do It RIGHT