The Most Underrated Service in GCP? It's Not What You Think. In the world of cloud security, we are obsessed with the new, the complex, and the cutting-edge. We talk about advanced threat intelligence feeds, sophisticated eBPF-based runtime security, and AI-powered anomaly detection. But what if the most...
Introduction During my time leading development teams, one of the most frustrating challenges we faced was dealing with the overwhelming number of security findings flooding in from various systems. They were rarely well-described, almost never prioritized, and often left us scratching our heads about their actual impact. Google’s Security...
Introduction As a developer working with AWS Lambda, I’ve always loved the idea of serverless computing - deploying code without worrying about managing servers. However, one challenge that frequently came up was handling Python dependencies in Lambda functions. Deploying a Lambda function with multiple dependencies can be cumbersome, especially...
Introduction Have you ever wondered how to scale your Google Cloud Platform (GCP) network while keeping it secure and efficient? If so, you're in the right place! In this blog post, we're going to explore the fascinating world of the GCP Hub and Spoke architecture and...
Introduction In the past, I have struggled to create custom findings in AWS GuardDuty or GCP Security Command Center (SCC). GCP SCC has an amazing feature to create custom findings via the API. This feature is quite hidden in the documentation, but in this article, we will explore the different...
Introduction In the current digital landscape, businesses are faced with an increasing number of cybersecurity threats. It is crucial to have robust security measures in place to protect sensitive data and maintain business continuity. One solution that can help is the Google Cloud Platform (GCP) Cloud Intrusion Detection System (IDS)...
Introduction AWS S3 is a great storage platform for hosting data. However, it's also a target for malicious intruders. 🎯 Most applications allow the user to upload their own data on S3 buckets. For example, to store images 📷, videos 📹, or any other custom data. How can you safeguard your...
Software development is a dynamic process that involves multiple stages, from writing code to testing and deployment. Code quality plays a crucial role in software development, as it determines the overall performance and reliability of the software. Poor code quality can lead to bugs, crashes, and security vulnerabilities. SonarQube is...
The bigger our cloud environments are getting, the harder it is to manage all security alerts and vulnerabilities of our workloads and services. For this purpose, we can utilize a tool called Security information and event management (SIEM), which provide real-time analysis of security alerts. AWS offers the service OpenSearch...
Amazon announced GuardDuty during the AWS re:invent 2017 to protect AWS accounts against a wide variety of attacks. Amazon GuardDuty is a threat detection service that continuously monitors malicious activity and unauthorized behavior to protect your Amazon Web Services accounts, workloads, and data stored in Amazon S3. While using...
Introduction Last month I wrote about Google's plans to acquire Wiz. I had concerns about how they would integrate the platforms. The acquisition closed on March 11, 2026. That was fast. Now I am seeing the first signs of integration. Some are exciting. Some are concerning. Security Command...
Introduction I need to say something that will make security vendors hate me. Most security spending is wasted. Not all of it. But most of it. I have watched companies spend millions on security tools that never detected a single threat. I have seen teams buy CNAPP platforms that sat...
Introduction I just read Google's Q4 2025 earnings report. Cloud revenue grew 48%. They hit a $70 billion annual run rate. Backlog jumped 55% to $240 billion. But what really caught my attention is what these numbers mean for GCP security. I started working with GCP back when...
Introduction So, you've deployed Tetragon and you're seeing the kernel-level security events it produces. You can see every process execution, every network connection, every file access. This is a goldmine of security data. But it immediately leads to the next big question: where do you put...
Introduction "Where should I put my data?" It sounds like a simple question, but in today's global, multi-cloud world, it's less philosophy and more "Oh, dear Lord, the auditors are asking again!" 😬 With regulations like GDPR, HIPAA, and a growing stack of...
The Most Underrated Service in GCP? It's Not What You Think. In the world of cloud security, we are obsessed with the new, the complex, and the cutting-edge. We talk about advanced threat intelligence feeds, sophisticated eBPF-based runtime security, and AI-powered anomaly detection. But what if the most...
