Event 3

“Cloud Mastery 2026 #3 AWS Security & Networking”

Event Objectives

  • Provide an overview of IAM, Networking, and system security on AWS.
  • Establish a foundation for access management, network design, and application protection.
  • Bridge theory with practical implementation through demos and real-world examples.

Speaker Details & Presentation Topics

1. Huynh Hoang Long & Dang Thi Minh Thu -FCAJ Cloud Engineer Ambassador

  • Topic: IAM on AWS
  • Main Content: Focuses on the concept of IAM and how to manage identities and access within AWS systems. The session covers best practices for IAM, SSO mechanisms, the use of SCP and Permission Boundaries for advanced access control, as well as security techniques such as credential rotation and Access Analyzer, along with a practical demo.

2. Lam An Thinh & Nguyen Phan Quoc Viet - Security Engineer Intern

  • Topic: Networking on AWS
  • Main Content: Provides an overview of networking in AWS, including VPC and CIDR design, subnet segmentation, configuration of Internet Gateway (IGW) and Route Tables, and the use of VPC Endpoints to optimize internal connectivity.

3. Lam Tuan Kiet - DevOps

  • Topic: AWS Network & Application Protection
  • Main Content: Introduces AWS security services such as AWS WAF (Web Application Firewall), AWS Shield, AWS Network Firewall, and AWS Firewall Manager, focusing on protecting systems and applications from potential threats.

Key Highlights

1. IAM and Access Management

  • Understood what IAM is and its role in AWS systems.
  • Applied best practices for secure access management.
  • Explored SSO in enterprise environments.
  • Utilized SCP and Permission Boundaries for advanced access control.
  • Applied credential rotation and Access Analyzer to enhance security.
  • Observed practical demos.

2. Networking on AWS

  • Understood how networking works in AWS.
  • Designed VPC using CIDR effectively.
  • Segmented systems using subnets.
  • Configured IGW and Route Tables for traffic routing.
  • Used VPC Endpoints to optimize internal communication.

3. AWS Network & Application Protection

  • Explored AWS WAF for web application protection.
  • Understood AWS Shield for DDoS protection.
  • Applied AWS Network Firewall for traffic control.
  • Used AWS Firewall Manager for centralized security policy management.

Event Experience

  • This event provided a clearer understanding of how to build secure and reliable systems on AWS.

Learning from experienced speakers

  • Gained insight into real-world security architecture design.
  • Understood how to effectively manage access and protect resources.

Practical technical experience

  • Observed demos of IAM and AWS networking configurations.
  • Understood how system components interact in real scenarios.

Applying modern tools

  • Learned how to use IAM for access control.
  • Designed networking using VPC.
  • Applied AWS security services to protect systems.

Networking and exchange

  • Had opportunities to connect with experienced professionals.
  • Expanded perspectives on cloud system design.

Key takeaways

  • Security must be designed from the beginning, not added later.
  • Proper access management significantly reduces risks.
  • A well-designed system balances security, performance, and scalability.