The Challenge of Security Visibility in the Past Back in the day, we followed best practices to configure our services securely. However, there was always the question: Did we actually configure everything correctly? Even if we used tools to identify misconfigurations, they rarely provided a comprehensive view across all services,...
Introduction Imagine you’re responsible for securing an AWS environment with dozens or even hundreds of accounts. Each account has its own users, permissions, and workloads. One day, you find out that a compromised IAM key in a sandbox account was used to exfiltrate data from an S3 bucket. The...
Introduction One essential aspect of GCP administration is implementing organization policies to ensure security 🔒, compliance 📜, and governance 📊. In this guide, we will explore how to create custom GCP organization policies to enhance your cloud posture. 🔐 The Importance of GCP Organization Policies 📜 Before we dive into the nitty-gritty of creating custom...
This article will give you the latest news on AWS security updates, solutions, and other cool stuff published in December 2022. The newest edition of the "AWS Cloud Security Roundup" blog series is now available. Enjoy this article? Subscribe to receive the latest news about cloud security here...
This article will give you the latest news on AWS security updates, solutions, and other cool stuff published in October 2022. The latest edition of the "AWS Cloud Security Roundup" blog series is now available. This month, we cover the following topics: regional updates, Identity and Access Management...
