Skip to main content
DASH NYC, June 9-10 | AI + Observability.

Back to Catalog
Security & Compliance
Expo Theater Talk

Six Degrees of Cloud Escalation - Day 1

About this Session

Who has administrative access to my production AWS account? This seems like a simple question, right? Isn't it just the users who have the AdministratorAccess policy applied to them? Unfortunately, it's not that simple. 

 

In this talk, we’ll follow along as Bob, a fictional Security Engineering Manager, tries to answer this question for Madeline, his CISO. We’ll see that, while it seems like a straightforward question, it’s unfortunately more complicated than it appears. 

 

The truth is, your identity threat model needs to account for transitive trust relationships and privilege escalation. Not only that, it also needs to extend beyond your production AWS account to include anything your production account trusts—your CI/CD tooling, other AWS accounts, other cloud providers, and even third-party SaaS platforms might offer exploitable paths that lead to your most sensitive production data.

Speakers

Seth Art

Seth Art

Senior Technical Advocate Datadog

Related Sessions

Security & Compliance
Harnessing AI
Breakout Session

BewAIre: Detecting Malicious Pull Requests at Scale with LLMs

01:00 PM – 01:40 PM

Speakers

D Niu, Senior Software Engineer, Datadog
Kassen Qian, Senior Product Manager, Datadog
Security & Compliance
Expo Theater Talk

From Alert Triage to Autonomous Response: The Future of SecOps with Datadog SIEM

01:30 PM – 01:50 PM

Speakers

Rex Guo, Staff Product Manager, Datadog
Security & Compliance
Panel

How to Innovate in Regulated Industries

09:00 AM – 09:40 AM

Speakers

Sinthanai Natarajan, Senior Executive Director, JPMorgan Chase
Paul Richards, SVP, Technology Operations, Citizens Bank
Arlei Roberto Francioli Junior, Executive Manager of Technology, Elo
John Trapani, Field CTO, Financial Services, Datadog
Security & Compliance
Expo Theater Talk

Modern Threat Detection and Incident Response for the AI Era

01:00 PM – 01:20 PM

Speakers

Vera Chan, Senior Product Marketing Manager, Datadog
Ron Feldman, Staff Product Manager, Datadog
Michael Li, Staff Detection Engineer, FanDuel
Nathan Pitchaikani, Senior Security Engineer, Riot Games
Security & Compliance
Expo Theater Talk

You Have Thousands of CVEs. What If You Only Had to Care About a Handful?

12:30 PM – 12:50 PM

Speakers

Connor Plante, Product Manager, Datadog
End-to-End Observability
Security & Compliance
Harnessing AI

From Commit to Runtime: Secure Software Delivery and Automated Response with Datadog

02:00 PM – 04:30 PM