Security, Identity & Compliance

Key concepts

1. 1
   Shared responsibility model: AWS secures the cloud; you secure in the cloud
2. 2
   Least privilege with IAM policies, SCPs, and permissions boundaries
3. 3
   Encryption: in transit (TLS), at rest (KMS, BYOK), envelope encryption
4. 4
   Threat detection: GuardDuty, Detective, Macie
5. 5
   Zero-trust patterns and AI security (red-teaming, prompt injection defense)

Key AWS services

• AWS IAM
• AWS IAM Identity Center
• AWS KMS
• Amazon GuardDuty
• AWS Security Hub
• AWS Config

Learn more — curated resources

Hand-picked official docs, foundational papers, and the best community guides for going deeper on this topic.

• AWS Cloud Security
• AWS Security Reference Architecture
• AWS Security Blog
• OWASP Top 10 for LLM Applications
• AWS Well-Architected Security Pillar

Sessions on this topic

65 sessions from the Summit covered this topic. Each is a self-contained mini-lesson.

1. PRT109-SFoundational

   Hello Future, Meet Reality: Enterprise AI Lessons

   Hello Future, Meet Reality is a fast, frank panel discussion with leaders on what actually held up when AI hit real-world conditions: legacy systems, security teams, governance, data mess, change fatigue... the lot. No magic wand, just real decisions, real trade-offs, and get their real view of what ""future-ready"" looks like in an enterprise.

2. PRT215-SIntermediate

   The Visibility Gap: Turning Observability into DevSecOps Signals

   The Visibility Gap: Turning Observability into DevSecOps Signals (sponsored by Datadog)Security teams and dev teams share the same production environment but operate from different signals. Without runtime context, security monitoring has blind spots with misconfigured infrastructure and threats in flight. This session draws on Fone Dynamics' ISO 27001 journey to show how runtime telemetry, cloud audit logs, and code scanning give DevSecOps and SecOps teams shared context.

3. PRT104-SFoundational

   Building Resilience for AI Data Foundations and Cloud-Native Apps 5 Steps to Enterprise-Grade AI Security for Amazon Bedrock Projects

   AI innovation depends on consistent, trusted data. When disrupted, AI systems and the business decisions they support are at risk. In this session, learn how cloudnative protection models support AI pipelines, reduce recovery time after disruptions, and minimise operational overhead. Discover best practices to protect AI and cloudnative applications in AWS while innovating with confidence.

4. PRT202-SIntermediate

   5 Steps to Enterprise-Grade AI Security for Amazon Bedrock Projects

   This session demonstrates how quickly and easily enterprise-grade AI security can be applied to your Amazon Bedrock projects. See the new Prisma AIRS AI-security platform in action on AWS: We explore Model Scanning and AI Posture Management; then dive into Runtime Security; and finally examine automated AI Red Teaming and AI Agent Security. Unlock your AI-led innovation - securely.

5. PRT204-SIntermediate

   Optimising GenAI at Runtime with Experimentation and Guardrails 5 Steps to Enterprise-Grade AI Security for Amazon Bedrock Projects

   Generative AI systems evolve constantly, and the impact of prompt or model changes often isnt clear until real users interact with them in production. In this session, learn how teams using Amazon Bedrock safely experiment with AI at runtime, testing models and prompts with targeted rollouts, evaluating system outputs online, and optimising against real business result

6. AIM201Intermediate

   From demo to deployment: solving agentic AI's toughest challenges

   Most AI agent projects stall when moving from prototype to production. This session tackles the top challenges builders face when deploying agentic AI at scale. You'll learn how to answer the fundamental question of whether to build custom agents or leverage pre-built agents for DevOps, security, development, and business productivity use cases. Then you'll discover how to address the critical production challenges of reliability, observability, cost management, security, and evaluation. Drawing from real customer deployments and AWS's portfolio of agentic AI capabilities, you'll gain actionable approaches for building agents that don't just demo well but ship and scale.

7. MAM306Advanced

   Adding Agentic AI to legacy apps with Amazon Bedrock AgentCore

   In this code-first session, we demonstrate how to add agentic AI capabilities and augment a legacy application using Amazon Bedrock AgentCore and the Amazon Strands Agents SDK. We will explore how to build AI-powered features for a legacy application without modifying the existing backend code. We will showcase how to leverage existing APIs and Lambda functions as the backbone for your agentic AI experience. You'll learn how to execute code in isolated sandbox environments, ensuring security while accessing internal data sources with Amazon Bedrock AgentCore Code Interpreter.

8. DEV204Intermediate

   AI-Powered EKS Troubleshooting with AWS DevOps Agent

   Managing EKS clusters means correlating logs, metrics, IAM policies, and network configurations under pressure. The AWS DevOps Agent, announced at re:Invent 2025, changes this workflow fundamentally. In this session, you'll watch a live demonstration where the DevOps Agent autonomously investigates an EKS service failuretracing issues from Pod logs through VPC Security Groups without manual intervention. You'll learn how the agent correlates cross-service dependencies, generates verified remediation plans, and integrates into existing SRE workflows.

9. DEV207Intermediate

   Data Observability Without the Pain - Lessons from a Production System

   Modern IoT platforms are inherently data platforms. Events flow through APIs, queues, AWS Lambda Serverless functions, storage systems, and device networks before becoming meaningful data. When something goes wrong, tracing a single event across these distributed components quickly becomes painfuland the question shifts from _what happened_ to _where do I even start looking Ill walk through three practical observability patterns drawn from building and operating a production, event-driven IoT healthcare platform on AWS that processes tens of thousands of device events daily. Using OpenTelemetry, AWS X-Ray and Honeycomb, well explore techniques for gaining visibility into asynchronous event pipelines, correlating activity across services, and tracing events as they move through distributed systems. Youll leave with three concrete patterns you can apply immediately to your own event-driven data systems.

10. ISV208Intermediate

    From One Month to Two Days: How Xero Transformed Their DLC with AI

    What if your engineering team could deliver a production-ready feature in two days that would traditionally take one month When Xero partnered with AWS, that's exactly what happened. In this session, we'll take you inside a real-world AI-Driven Development Life Cycle (AIDLC) workshop run against a live production use case. Working across an existing brownfield codebase, the Xero engineering team reached MVP in just two days against a feature that would have taken a month using traditional development methodology. We'll unpack what made that possible, what we learned along the way, and how those lessons are now shaping a plan to scale the AIDLC methodology across the entire engineering organisation.

11. AIM303Advanced

    AWS Security Agent: Proactive AppSec from Design to Deployment

    Application security teams face an impossible challenge: scale security expertise across growing application portfolios while maintaining development velocity. Traditional approaches force organizations to choose between speed and security. In this session, discover how AWS Security Agent transforms application security from reactive to proactive through AI-powered automation. Learn how this frontier agent conducts automated security reviews customized to your organizational requirements and delivers on-demand penetration testing tailored to your applications. Join us to see how you can scale security coverage and prevent vulnerabilities early in the development lifecycle while maintaining the speed of modern development.

12. DEV205Intermediate

    Securing Amazon Bedrock AgentCore: A Practical Framework

    Explore a practical framework to think about and build secure AI agents on Amazon Bedrock AgentCore. This session covers threat modeling specific to agentic workloads, including how agents interact with tools, memory, and external systems, and what you need to watch out for. You'll learn how to apply AWS security best practices across AgentCore services, and walk away with actionable patterns. Suitable for developers and architects building AI agents who want to move from prototype to production with confidence.

13. STP201Intermediate

    Scaling Security at Startup Speed: Hnry's AI-Powered Approach

    Hnry, a fast-growing fintech startup, faced a critical challenge: their lean engineering team lacked capacity for thorough security reviews and penetration testing. Traditional solutions like hiring security specialists or engaging consulting firms would compromise their velocity and budget. By adopting AWS Security Agent, Hnry gained enterprise-grade security capabilities without enterprise overhead. The AI-powered tool integrated into their development workflow, providing real-time security feedback, automated design reviews, and on-demand penetration testing. This enabled Hnry to maintain startup speed while achieving robust security posture, proving small teams can deliver enterprise-level security through intelligent automation.

14. PRT213-SIntermediate

    How NAB is Conquering Multi-Cloud to Secure the Enterprise

    For the National Australia Bank (NAB), operating across multiple cloud environments and delivery platforms is a necessity but results in a critical challenge - fragmented visibility and the costly reality of "design once, build thrice" security controls. Learn how NAB moved beyond compliance to empower every engineering team with a unified view of risk, achieving security at speed and scale.

15. PRT301-SAdvanced

    Unite Teams, Tools, and AI to Drive Transformation at Scale

    Today's leaders face pressure to prove AI ROI, yet many struggle to realise value on fragmented foundations. Miro on AWS solves this by uniting teams, tools, and collaborative AI workflows in one workspace — amplifying the way teams actually work with enterprise scale and security. In this fireside chat with Culture Amp, hear how turning AI ambition into real outcomes works in practice.

16. PRT103-SFoundational

    Cloud Anywhere: Architectural Freedom for Unified Data and AI 5 Steps to Enterprise-Grade AI Security for Amazon Bedrock Projects

    Need flexibility across cloud and on-premises This session reveals how delivering cloud anywhere gives you the architectural freedom to run data and AI across AWS, clouds and hybrid environments. Discover how a unified data fabric simplifies governance and security, accelerating AI-driven innovation. Achieve unified control and compliance for highly regulated environments.

17. AIM204Intermediate

    Get to know Amazon Quick, your new agentic teammate

    Most of us spend more time hunting for information than using it. Amazon Quick changes that. It reaches across all your company's data — documents, databases, emails, Slack threads, dashboards, Jira tickets — and lets you search it, ask questions, and take action, all from one place. Available across web, mobile, Slack, and Microsoft tools with multi-model intelligence, Quick delivers consumer-grade AI with enterprise-grade security and governance. No vendor lock-in, no siloed copilots. Just one AI teammate that works wherever you do.

18. PRT101-SFoundational

    Accelerating Innovation with GitLab DAP Powered by Amazon Bedrock

    Learn how GitLab Duo Agent Platform (DAP) powered by Amazon Bedrock brings agentic AI into every stage of the software development lifecycle while keeping data, logs, and inference traffic inside your AWS environment. We'll show how teams can orchestrate AI-assisted workflows for planning, coding, security, and compliance using Amazon Bedrock foundation models behind GitLab's AI Gateway.

19. PRT203-SIntermediate

    Design, Deploy, and Govern AI Agents with Boomis Agentstudio 5 Steps to Enterprise-Grade AI Security for Amazon Bedrock Projects

    Transform enterprise automation with Boomi's AI agent ecosystem. Learn to use Agent Designer to visually build agents that connect across systems, and Agent Control Tower for centralised governance, compliance, and performance monitoring. Securely orchestrate your AI lifecycle at scale with Amazon Bedrock.

20. SEC305Advanced

    Advanced AI Security: Architecting Defense-in-Depth for AI Workloads

    Dive deep into advanced security architectures for AI workloads, exploring how to protect your workload against sophisticated attack vectors. Through technical examples, we'll implement secure architectures for AI workloads, covering identity, fine-grained access policies, and secure foundation model deployment patterns. Learn how to harden generative and agentic AI applications using AWS security capabilities, implementing least-privilege controls, and building secure architectures at scale.

21. ISV301Advanced

    Rolling to Scale: Roller's Multi-Tenant SaaS platform on AWS

    Learn how Roller Software grew from an Australian startup into a global venue management platform serving 3,000 venues across 30 countries and delivering 120 million experiences annually. Using AWS multi-tenant architecture, Roller maintains 99.99% uptime while processing $4 billion in transactions each year through their modern monolith application. This session covers practical strategies for tenant isolation, infrastructure scaling, and enterprise-grade security. Youll discover how to leverage AWSs native multi-tenant capabilities and get a proven roadmap for scaling your SaaS business from startup to enterprise while keeping costs efficient and operations excellent.

22. STP211Intermediate

    Authenticating AI Agents: How Kinde Navigates Agentic Identity

    AI agents are no longer just answering questions - they're booking flights, managing infrastructure, and calling APIs on our behalf. But when an agent acts autonomously, who's really knocking on the door This talk explores how Kinde is rethinking authentication and authorisation for a world where your users aren't always human, covering machine-to-machine identity, delegated scopes, and why traditional auth flows break down when agents enter the chat.

23. AIM203Intermediate

    Prompt Engineering to Learning Systems: Woodside's Agentic Ecosystem

    Woodsides Agentic Maintenance Framework connects frontline execution to longhorizon strategy, turning each job into fuel for continuous improvement. The approach uses governed evidence and multiagent AI to assemble the right context at the decision pointimproving request quality, planning accuracy, and execution readinesswhile capturing planvsactual signals that strengthen backlog quality, scheduling confidence, and longterm maintenance strategies. The result is a closed loop where execution improves strategy, and strategy improves execution, all within existing governance and systems of record. In this talk, well share practical lessons from designing the tactical layer (Maint Assist) and the strategic layer (Maint Intel), show how evidence is created once and reused across the lifecycle, and outline a maturity path from prompts to agentic orchestrationfocused on safety, reliability, and efficiency.

24. ARC304Advanced

    Demystifying Agent Identity

    Confused by inbound vs. outbound authentication for agents You're not alone. This Level 300 session demystifies OAuth flows and agent identity patterns through the lens of a practitioner's learning journey. Explore the differences between SPA (single-page web app) and agent authentication, then dive into AgentCore's inbound/outbound auth with Runtime and Gateway. Through live code demonstrations of 3-legged OAuth flows, you'll see exactly how agents authorize actions on behalf of users. Leave with working code examples from aws-samples and practical implementation insights to accelerate your agent development. Part of the AgentCore session track.

25. DEV201Intermediate

    How Flybuys Built AI Governance to Accelerate Adoption at Scale

    Scaling AI successfully isnt just about moving fast — its about building the right foundations first. In this session, learn how Flybuys focused early on AI governance, steering documents, and engineering standards to enable smooth, secure AI adoption at scale. Well explore how upfront investment in guardrails, training, and approval processes allowed teams to deploy AI capabilities faster and with confidence. Youll hear how Flybuys is embedding governance and security expectations into engineering workflows using Kiro, including standardised steering patterns, approval pathways, and controlled rollout of AI capabilities such as Powers. Attendees will gain practical insights into how slowing down early can unlock faster, safer AI delivery across the organisation.

26. DEV305Advanced

    Agents in the enterprise: Best practices with Amazon Bedrock AgentCore

    As organizations scale AI agent development, robust enterprise architecture patterns become essential. In this advanced session, we'll explore how Amazon Bedrock AgentCore enables teams to build modular systems using their preferred frameworks while sharing tools through MCP gateways. Learn about A2A collaboration, shared memory, identity-based access controls, and integrated observability. Discover practical strategies for secure runtime deployment, standardized tool integration, evaluation frameworks, and end-to-end monitoring. Leave with actionable insights to build secure, scalable agent infrastructures that balance centralized governance with team autonomy.

27. ISV205Intermediate

    AWS Graviton: The best price performance for your AWS workloads

    AWS Graviton-based Amazon EC2 instances provide the best price performance for workloads in Amazon EC2. In this session, dive deep into the AWS Graviton processor and learn about its workload performance, energy efficiency, and software offerings. Hear from Atlassian as they share their Graviton adoption journey and practical tips for migration success. Learn about common use cases, best practices to optimize your workloads across various applications, customer success stories and how you can accelerate your AWS Graviton journey.

28. STP208Intermediate

    NextAI's LegalScout: A Data Foundation for Private Legal AI

    LegalScout helps Australian SME law firms turn Generative AI into a competitive advantage by securely leveraging their own client data and confidential matters to work smarter, not harder. Built with Australian lawyers on AWS using Amazon Bedrock for inference and Amazon S3Vectors for secure document searches, it automates repetitive work, streamlines workflows, and improves drafting, contract review, and research to boost productivity, reduce costs, and lift accuracy while maintaining strict privacy and compliance.

29. STP302Advanced

    Unleash Live: Cloud-Powered Vision for Infrastructure

    What happens when live video meets AI and the scalability of AWS This session explores how Unleash live harnesses AWS to deliver real-time vision analytics, moving from ingestion to insight in milliseconds. We detail the architecture of cloud-native pipelines that process live streams at scale and apply custom computer vision models across the energy, security, and infrastructure sectors. By combining edge connectivity with AWSs elastic infrastructure, Unleash live transforms drone and CCTV feeds into actionable intelligence. Attendees will gain insights into key design decisions and learn how cloud-based AI optimises operations, reduces risk, and unlocks the speed that modern physical AI demands.

30. SEC401Expert

    Advanced AI Security: Architecting Defense-in-Depth for AI Workloads

    Dive deep into advanced security architectures for AI workloads, exploring how to protect your workload against sophisticated attack vectors. Through technical examples, we'll implement secure architectures for AI workloads, covering identity, fine-grained access policies, and secure foundation model deployment patterns. Learn how to harden generative and agentic AI applications using AWS security capabilities, implementing least-privilege controls, and building secure architectures at scale.

31. ARC401Expert

    The Art of Managing Trade-Offs for your Network Design with Megaport

    Every network design decision involves careful trade-off considerations. In this session, master the art of making critical network design decisions through real-world scenarios that showcase Megaport's innovative NaaS platform for AWS connectivity. Learn how to evaluate key trade-offs between centralized and distributed architectures while balancing security, performance, and cost requirements. Explore how Megaport's on-demand bandwidth, private connectivity to AWS Direct Connect, and multi-cloud capabilities transform network design decisions. Whether you're building a global network, managing multi-account environments, or implementing hybrid connectivity to on-premises locations, attendees will leave with actionable insights and practical decision-making tools to optimize network infrastructure architecture designs with Megaport and AWS

32. ARC302Advanced

    Secure Multi-tenant SaaS with AWS Lambda: A Tenant Isolation Deep Dive

    In this session, learn about AWS Lambda's execution environment lifecycle, diving deep into how the service manages isolation at the function level, and understanding the security implications of environment reuse patterns. Learn about traditional patterns for compute isolation in multi-tenant environments, as well as explore Lambda's tenant isolation mode - a new powerful capability that enables tenant-level compute separation without operational overhead. Explore how to implement robust tenant isolation strategies, manage state across executions, and leverage Lambda's security boundaries effectively. Whether building new SaaS applications or enhancing existing ones, leave with practical knowledge to implement secure multi-tenant architectures at scale.

33. ARC307Advanced

    AI Powered Resilience Lifecycle

    Not all disaster recovery strategies can address the complex, dynamic nature of modern cloud infrastructures, leading to gaps in system resilience and compliance adherence. Discover how to enhance resilience and disaster recovery on AWS empowered by AI. This approach bridges infrastructure insights and application-level testing, enabling more effective disaster recovery preparation. You will learn how to leverage Large Language Models (LLMs) with AWS Resilience Hub and AWS Systems Manager to modernize testing, analyze infrastructure, and generate targeted AWS Fault Injection Service experiments and recovery runbooks. Walk away with practical examples of automated test generation with templates and learn to design prompts.

34. ARC402Expert

    DynamoDB: Resilience & lessons from the Oct 2025 service disruption

    In this session, we will walk through the architecture for the Amazon DynamoDB DNS management system that triggered the service disruption on October 20, 2025. We will share the lessons that the DynamoDB team learned from this event and explain how we are using these insights to improve both DynamoDB and AWS. You will walk away with actionable knowledge that you can apply to the systems you build.

35. ARC403Expert

    Secure Multi-tenant SaaS with AWS Lambda: A Tenant Isolation Deep Dive

    Secure Multi-tenant SaaS with AWS Lambda: A Tenant Isolation Deep DiveIn this session, learn about AWS Lambda's execution environment lifecycle, diving deep into how the service manages isolation at the function level, and understanding the security implications of environment reuse patterns. Learn about traditional patterns for compute isolation in multi-tenant environments, as well as explore Lambda's tenant isolation mode - a new powerful capability that enables tenant-level compute separation without operational overhead. Explore how to implement robust tenant isolation strategies, manage state across executions, and leverage Lambda's security boundaries effectively. Whether building new SaaS applications or enhancing existing ones, leave with practical knowledge to implement secure multi-tenant architectures at scale.

36. DAT303Advanced

    Explore whats new in data and AI governance with SageMaker Catalog

    Join this session to learn about the latest capabilities in Amazon SageMaker Catalog that help organizations govern data and AI more effectively. We will walk through new features that make it easier to discover, govern, and securely share structured and unstructured data, models, business intelligence dashboards, and applications. Youll hear how customers are using these capabilities to improve data discovery and access, streamline compliance, and support AI initiatives.

37. FSI206Intermediate

    Agentic AI Transforming Quality at Cloud Speed

    Agentic AI Transforming Quality at Cloud SpeedFinancial services cloud transformations unlock tremendous opportunity - and quality assurance is the catalyst. The Quality Validation Agent Framework deploys specialised AI agents across the delivery lifecycle, collaborating through the AgentCore Runtime Platform to continuously monitor, validate, and accelerate work in real-time. Covering Assessment, Transformation, Testing, and Deployment Intelligence, these autonomous agents shift FSI organisations from reactive checkpoints to proactive validation - eliminating rework, detecting defects early, and achieving AWS Well-Architected compliance with confidence. Come and join us to discover how agentic AI turns quality assurance into your fastest path to production in banking and financial services!

38. PRT106-SFoundational

    The AI Challenge You Don't Yet Know About - Software Supply Chain

    Most teams have "done DevOps" but still face low platform adoption, rising cloud costs, lagging security, and fragile incident response. This session explores the "After" state: treating your platform as a product, with golden paths, built-in security, AI-driven simplicity, and reliability by defaultusing Harness as the model for a governed, cost-aware, AI-native developer experience.

39. PRT111-SFoundational

    From Risk to Resilience - How Mimecast Works with AWS

    Human risk is a critical layer of any security strategy. Human risk management addresses how employee behaviorfrom accidental sharing to shadow AI usecreates organizational exposure. Discover how Mimecast, on AWS, helps identify risky behavior, protect critical data and account access, and support compliance. Real-world insights. Behavioural analytics. Adaptive controls. Measurable ROI.

40. ISV202Intermediate

    Architecting for growth and resilience: Cell based design deep dive

    As business demands evolve, architectural patterns must evolve too. SafetyCulture and Buildkite implemented cell-based architectures driven by distinct business objectivesscaling for hypergrowth and enhancing infrastructure resilience. SafetyCulture's expansion plans required proactive architectural evolution to unlock unlimited scaling capacity. Buildkite needed to meet stringent security isolation requirements while achieving scale through repeatable deployment units. This session shares real-world experiences as both companies designed and implemented cell-based architectures for their SaaS platforms. Discover how SafetyCulture identified bottlenecks, redesigned systems for isolation and resilience, and aligned technical capabilities with business growth targets. Learn how Buildkite leveraged cell-based design to achieve both scale and security isolation. Walk away with actionable patterns for building resilient, scalable architectures.

41. ISV211Intermediate

    Scaling Conversation Intelligence with Agentic AI on AWS

    Businesses capture millions of conversations daily, sales calls, support interactions and compliance discussions, yet most of this intelligence remains locked away. Standard dashboards and predefined reports cannot address every customer's unique questions. Dubber, a world leader in conversation capture and intelligence, built Insight Agent on AWS, enabling users to ask bespoke, natural language questions across conversations and structured data to receive context-aware answers in seconds. Learn how Dubber innovated from static dashboards to surfacing business value moments, and now to agentic AI that compresses time to value, making conversation intelligence accessible, scalable and viable.

42. STP204Intermediate

    How Heidi Health Fine-Tunes Speech-to-Text Models on AWS

    Join Heidi Health and AWS's Generative AI Innovation Center (GenAIIC) for a behind-the-scenes look at building and deploying custom speech-to-text AI for healthcare. Learn hard-won lessons and a practical blueprint: curating domain-specific training data, fine-tuning open-weight models, validating non-deterministic outputs at scale, and shipping to production with optimized inference. Both teams share how AWS services reduced infrastructure complexity, accelerated iteration cycles, and scaled custom models across diverse real-world use cases — all while maintaining security and cost efficiency. Ideal for ML engineers, data scientists, and technical leaders exploring fine-tuning and production ML on AWS.

43. ISV209Intermediate

    From dev tools to customer value: BGL's agentic AI journey

    Australian fintech leader BGL demonstrates their systematic approach to scaling agentic AI. Starting with Claude Code on Amazon Bedrock for developer productivity, BGL built OpsGorilla, a Slack-integrated agent serving 200+ employees. BGL extended AI agents to customer-facing innovation. BGL's Roni AI autonomously drafts annual compliance work for Self-Managed Superannuation Funds, reducing accountants' workload from days to hours. Built on Claude Agent SDK and Amazon Bedrock AgentCore, BGL's implementation showcases practical architectural patterns for organizations scaling AI agents from developer tools through enterprise operations to customer solutions.

44. FSI204Intermediate

    Agentic AI in Financial Services: Architectural Patterns That Work

    Getting agentic AI right in financial services means balancing innovation with the realities of compliance, risk, and auditability. This session cuts through the hype — exploring proven architectural patterns from reactive agents to multi-agent topologies, and how FSI organisations are using them to transform customer experience and automate operations. Leave with actionable guidance on building the business case, avoiding enterprise-scale pitfalls, and putting well-architected agents into production.

45. IND204Intermediate

    How Transurban Transformed Customer Experience with AI Agents on AWS

    Every month, Transurban handles 5.5 million customer interactions across its Linkt brand — and is reimagining every one of them. Built on Amazon Connect, Transurban's AI-powered customer service platform has evolved from simple chatbots to multi-turn conversational AI and personalised experiences that are already lifting bot containment and freeing agents for higher-value work. Join this session to hear how Transurban is aligning people, process, and AI to transform customer service, what's coming next with Amazon Connect Cases and Email, and the hard-won lessons from scaling AI in a complex enterprise.

46. DEV203Intermediate

    Decisions Over Diagrams: How Bell Financial Group Architects on AWS

    Architecture diagrams show what you built. They don't explain why. At Bell Financial Group, every major technology choice — from landing zone design to compute platform to database engine — is captured in an Architecture Decision Document that forces honest evaluation of trade-offs. In this talk, the Head of Engineering at Bell Financial Group walks through the real decisions behind their AWS platform: why ECS Fargate beat EKS, when DynamoDB wins over relational databases, why the entire infrastructure is written in TypeScript CDK, and the deliberate constraints they place on Lambda usage. No slides full of boxes and arrows — just the reasoning, the trade-offs, and the lessons learned building a regulated financial services platform on AWS.

47. ISV103Foundational

    Working With AI: Lessons They Don't Put in the Demo

    We're past the hype phase and into the "figuring it out" phase. AI is reshaping how we build, hire, and collaborate, but the reality on the ground doesn't always match the pitch. In this session, Pushpay shares what they are actually seeing across teams and organizations: the common traps, the unexpected side effects, and the coping strategies that are actually working. Come ready for an honest, practical conversation about thriving with AI rather than just surviving it.

48. STP301Advanced

    AI-Native Remediation with Pleri: Your Security Engineer That Ships

    Most security tools find the problem and hand it to a human. Plerion closes the loop. In this talk, we'll show how Pleri, our AI security engineer powered by Amazon Bedrock, takes a critical cloud risk from detection to remediation without the alert-ticket-backlog cycle. Watch a top risk get prioritized, a ticket filed, a PR opened, and code-level remediation land in your environment. Re-define what it means to have an AI teammate that does the work, not just alerts and reporting.

49. IDE101Foundational

    From principles to practice: Scaling AI responsibly

    Building AI applications that customers trust requires more than technical excellenceit demands a deliberate approach to managing risk across every stage of the AI lifecycle. As organizations scale their AI initiatives, the challenge of balancing innovation speed with responsible AI practices across dimensions like privacy, security, fairness, safety, and explainability becomes increasingly critical. Join our panelists for a 30-minute discussion where they will explore: Practical approaches to embedding responsible AI principles into AI application development without slowing down innovation, key considerations across privacy, security, fairness, safety, and explainability that organizations should prioritize, lessons learned from building AI applications that earn and maintain customer trust, and strategies for navigating the evolving responsible AI landscape and managing risk at scale. Whether you are a technical leader building AI solutions, a business decision-maker shaping your organization's AI strategy, or a practitioner looking to deepen your understanding of responsible AI, this session will provide actionable insights to help you build AI applications that are not only innovative but also trustworthy.

50. DEV308Advanced

    AI Blast-Radius Reviews for AWS Changes Using Amazon Bedrock

    Cloud infrastructure changes carry hidden risks that manual reviews often miss. This session demonstrates how to build a pre-deployment blast-radius reviewer using Amazon Bedrock that analyzes infrastructure-as-code diffs, IAM policy changes, and deployment metadata to produce structured risk assessments in seconds. Attendees will learn how to design grounded AI workflows that identify affected services, security gaps, cost implications, and rollback considerations, and how to apply Bedrock guardrails for consistent, safe outputs. The session includes a live demonstration and covers practical patterns for integrating AI-generated assessments into existing engineering approval and governance processes without sacrificing speed or reliability.

51. IDE102Foundational

    Power of Possibility: Leading Through Innovation and Connection

    As AI reshapes every industry, professionals across all roles and backgrounds are navigating an unprecedented pace of changebringing new opportunities but also rising burnout, blurred boundaries, and pressure to continuously adapt. This moment of disruption presents a powerful opportunity to not only deliver innovation but to redesign how we lead, build culture, and sustain meaningful careers in more equitable ways. Join accomplished AWS leaders and peers for this immersive session that combines strategic leadership frameworks, emotional intelligence, and interactive roundtable discussion to accelerate your impact in tech. Together, we will explore practical strategies for claiming visible technical leadership, activating professional networks, setting sustainable boundaries in hybrid work, and championing responsible AI adoption without amplifying existing inequalities. Participants will share lived experiences, tactics that worked and lessons learned, and build meaningful connections through guided speed networking in a collaborative, supportive environment. This session empowers professionals from all backgrounds, with particular focus on amplifying diverse voices and fostering inclusive innovation. Leave with actionable strategies to strengthen your leadership presence, leverage emotional intelligence as a career accelerator, build psychologically safe and inclusive team environments, and navigate the challenges shaping your future in tech.

52. IND301Advanced

    Stockland Empowers People with a GenAI Assistant Built on AWS

    Discover how Stockland, one of Australia's largest diversified property groups, built an intelligent AI assistant on AWS that puts enterprise knowledge at everyone's fingertips. This session explores a multi-agent system powered by Amazon Bedrock & Strands SDK and embedded in Microsoft Teams, that enables teams to streamline vendor management, automate routine tasks and accelerate decision-making. Learn how Stockland built intelligent workflows that transform procurement data into actionable insights, reducing manual effort while improving accuracy and compliance.

53. TNC204Intermediate

    Exam Prep: AWS Solutions Architect Associate

    Prepare for the AWS Certified Solutions Architect — Associate exam with this interactive study session. Review the AWS Certified Solutions Architect — Associate Official Practice Question Set, and get your questions answered by the subject matter expert leading the study session.

54. DEV206Intermediate

    AI Isnt Just for Developers: Using Kiro CLI & AWS MCP for Cloud Ops

    You cant turn your head sideways without seeing a slew of articles, blogs, or videos about AI, and most of them focus on developer tooling and writing code. But AI isnt just for developers. Its an incredibly powerful tool for operations folks, too.In this lightning talk, Ill share how I use Kiro CLI and the Kiro console with AWS Model Context Protocol (MCP) integrations for day-to-day cloud operations. From information gathering and log analysis to reporting and IAM policy interpretation, these tools help reduce cognitive load and speed up your output when working with AWS environments.Ill also discuss how I used Kiros spec-driven development approach to build a Python-based reporting tool, despite not being a software developer.This session is designed to make AI tooling feel approachable and practical for anyone working in AWS — not just developers.

55. BIZ201Intermediate

    AI-Everywhere: Transform Customer Interactions into Memorable Moments

    The enterprise landscape is shifting rapidly, forcing businesses to rethink their customer experience (CX) and collaboration strategies. From rising security threats, to dynamic workforces, to the desire to delight customers at every touchpoint: the demands are complex and ever-evolving. AWS empowers you to navigate these challenges with AI embedded from day one across the entire customer journeynot bolted on, but built in.

56. INO101Foundational

    From Zero to 270 AI Agents: how Lendi built Guardian

    When Lendi Group launched Project Aurora on AWS, they bet big on a single super-agent with 270 tools. It floppedtechnically impressive but commercially useless. The agent couldn't sell. The breakthrough came from treating AI like a workforce: specialist agents with clear roles, sales logic embedded in the funnel, and relentless measurement. Engagement tripled. This talk shares the hard lessons from Lendi's 16-week sprint: why capability isn't outcome, why your best prompt engineer might be a 23-year-old closer, and how to architect agentic systems that actually convert.

57. DEV309Advanced

    AI Outputs: Amazon Bedrock Structured Output in Production

    Parsing LLM responses as JSON worksuntil truncation, missing fields, or malformed output breaks your pipeline. This session examines Amazon Bedrock Structured Output, which enforces schema compliance at the model level rather than relying on prompt instructions. You'll learn how to define response contracts using JSON Schema, understand where native structured output differs from prompt-based approaches, and see practical patterns for integrating reliable model responses into production systems. Attendees will leave with concrete techniques for eliminating output validation failures, designing more resilient AI workflows, and understanding the architectural implications of treating model responses as typed, validated data rather than freeform text.

58. IND206Intermediate

    How scalable data foundations helped TGE unlock the power of AI

    In one of Australia's most operationally complex industries, Team Global Express (TGE) turned data into a strategic asset, and AI into a competitive edge. In 2025, TGE invested in data modernisation, establishing an AWS native data platform which now serves as the operational heartbeat of its logistics network. On this foundation, TGE is delivering compounding business value through rapid deployment of AI solutions across multiple domains. Join this session to learn how TGE secured board-level backing, built a lean AI team, and is scaling pragmatic, cost-effective AI — including the lessons learned along the way and whats next on their roadmap.

59. WPS302Advanced

    Secure and Resilient Agentic AI for High-Assurance Environments

    Autonomous AI systems that plan, decide, and act across workflows are transforming how organisations deliver mission-critical services. This session shares security-first architecture best practices for designing, deploying, and governing agentic AI in high-assurance environments, drawing from Australia's Information Security Manual (ISM) and AWS security frameworks. Discover practical patterns for architecting proactive, intelligent services while maintaining security, transparency, and operational resilience through defense-in-depth strategies and purpose-built AWS capabilities.

60. DEV208Intermediate

    Production-Grade Platforms: Real-World IaC Practices on AWS

    Managing infrastructure as code sounds straightforward until you're wrangling hundreds of modules across multiple teams and accounts. In this session, a Platform Engineer and Lead Architect share hard-won lessons from building and scaling IaC platforms at large organisations — covering module composition strategies, state isolation patterns, and CI/CD pipelines that keep deployments safe and reproducible. You'll walk away with practical design patterns you can apply immediately, whether you're laying the foundations of your first landing zone or untangling a sprawling estate that's grown faster than its architecture.

61. ISV213Intermediate

    From GRC Platform to AI-Native Risk Intelligence on AWS:Protecht Story

    Protecht, a global leader in enterprise risk management software, partnered with AWS and Caylent to build Cognita AI, an embedded AI assistant purpose-built for governance, risk, and compliance (GRC). Backed by a $280M PSG investment, Protecht built Cognita on a production-grade Amazon EKS foundation, integrating Amazon Bedrock and Anthropic's Claude models with a RAG architecture grounded in Protecht's proprietary GRC content. The result is a contextual, explainable, and auditable AI assistant that guides risk professionals through complex workflows, earning high accolades at the Gartner Enterprise Risk, Audit & Compliance Conference and setting a new benchmark for investor-grade, regulator-trusted AI in months.

62. FSI202Intermediate

    Accelerating Payment Innovation: Spec-Driven Development with AWS Kiro

    Australian Payments Plusoperator of Australia's critical payment infrastructure including eftpos, BPAY, and NPP, processing millions of daily transactionstransformed their development practices by adopting Spec-Driven Development using AWS Kiro. AP+ manages the payment rails connecting banks, merchants, and consumers throughout Australia. Through intensive Event-Driven Architecture bootcamps and hands-on training, engineering teams now independently run development workshops every two weeks, accelerating delivery of payment platform innovations while maintaining the highest security and compliance standards required for national financial infrastructure. Learn the practical framework for building development velocity in regulated environments.

63. SMB203Intermediate

    From Vision AI to Agentic AI: Real-Time Ops & Compliance in QSR

    Fingermark's Eyecue platform turns drive-thru video feeds into real-time operational intelligence for some of the world's largest QSR brands. Using hybrid edge-cloud architecture on AWS, they track every customer journeycapturing precise timing at order points, windows, and bayswhile keeping sensitive data at the edge. Now they're taking the next leap: agentic AI powered by Amazon Bedrock AgentCore. Autonomous agents automatically answer compliance questions"Are there spills Are staff following food handling protocols"replacing manual audits with continuous monitoring. See how a Kiwi company scaled from local innovation to global impact, and from computer vision to autonomous agents.

64. SEC501All levels

    Where Big Ideas Live: How to Actually Read Research Papers

    Research papers hold ideas you won't find in any docs, blog posts, or explainer videos. They're also brutal to read, and can leave you frustrated. This talk is about how to actually read one, layer by layer. First what the paper is about, then why it's important, and finally how it works. We'll start with AWS IAM Access Analyzer and it's paper on Stratified Predicate Abstraction. Then we'll work backwards through the research papers it's built on, learning about SMT solvers and Decision Procedures. You'll walk out with a method you can use on any paper, in any field.

65. WPS202Intermediate

    Secure and Resilient Agentic AI for High-Assurance Environments

    As governments worldwide race to modernise services, agentic AI based autonomous systems that plan, decide, and act across workflowsis emerging as a game-changer. This session delivers a compliance-first blueprint for designing, deploying, and governing agentic AI in the Australian public sector, fully aligned with Australias Information Security Manual (ISM) and national AI standards. Learn how to transform legacy processes into proactive, citizen-centric services while ensuring security, transparency, and trustwithout regulatory risk.

One sharp, contrarian insight per session — the things teams don't think of unprompted.

Related topics