2025-12-13 –, Rookie Track 1
Across 15 minutes I will guide you through securing both on-prem networks and cloud environments with straightforward, actionable tips. By unpacking a real-world security-group misconfiguration I’ll show how fundamental network-segmentation principles translate from your LAN to AWS or Azure and deliver a compact checklist you can implement immediately.
Modern defenders must juggle traditional network controls and identity-driven cloud policies without drowning in complexity. This talk begins with a concise case study: one misconfigured AWS security group that bypassed firewall rules on premises and enabled lateral movement.
Building on this scenario, I will:
- Clarify the roles of stateful firewalls and network segmentation on-premises
- Map those principles onto cloud-native constructs like security groups, NSGs, and IAM roles
- Demonstrate a simple shell script that automates configuration checks and alerts on drift
- Share a one-page checklist and free community tools for continuous monitoring
I’m Ali Sohail, a Cloud Infrastructure & DevOps Lead with over a decade securing Linux, on-prem network, and cloud environments for enterprises and MSPs. I’ve just relaunched my own IT MSP while balancing end-of-life caregiving for my mother, and I thrive on turning complex security challenges into clear, actionable steps.
As an official Red Hat training partner and hands-on mentor, I build workshops that empower junior defenders to level up their skills. This will be my first public talk, and I’m excited to share practical, no-nonsense tips you can implement first thing Monday morning.