CIEM vs CWPP vs CSPM

CIEM vs CWPP vs CSPM

Application and web development paradigms are shifting quickly toward the cloud, which now provides extensive resources for storage, scaling, and networking. With such rapid expansion comes an array of novel and complex security concerns. Moreover, developing and managing applications in the cloud has become faster and easier, which inadvertently expands the potential for human error. Fortunately, there are several solutions to ensure that your cloud architecture remains secure. This article will explore three solutions, CIEM,…

Read More

Well-Architected Framework: Sustainability

Well-Architected Framework: Sustainability

Designing and implementing your business workloads in a public cloud platform such as Amazon Web Services (AWS), Microsoft Azure, or Google Cloud Platform (GCP) can be a challenge. Though the marketing pitch makes it sound as if it is straightforward to deploy and migrate workloads to the cloud, it nonetheless requires a thorough understanding of several factors. This includes how that cloud environment is configured, the platform’s architecture, what services are available, and how you,…

Read More

Top 5 Infrastructure as Code (IaC) Security Challenges

Top 5 Infrastructure as Code (IaC) Security Challenges

Infrastructure as code (IaC), an essential component of contemporary software, enables developers to spin up software infrastructure while offering systems the ability to grow in a flexible and on-demand manner. Tools that make these configurations based on a programmatic method fall under the category of IaC, including: AWS CloudFormation Azure Resource Manager Helm Charts Progress Chef Puppet Red Hat Ansible Terraform IaC has altered the process of deploying environments for online services and applications. Rather…

Read More

6 AWS Sustainability Pillar Principles

6 AWS Sustainability Pillar Principles

What is the Sustainability Pillar? The latest addition to the AWS Well-Architected Framework aims to help you use environmental best practices for cloud computing. By following the six design principles and architectural best practices, organizations will be able to improve their carbon footprint while balancing cost, security, agility, reliability, and operational excellence. Sustainability in the cloud Sustainability is a hot topic. By moving to the AWS Cloud, your company is already reducing its carbon footprint….

Read More

Secure application development for the cloud best practices

Secure application development for the cloud best practices

Why follow best practices? Understanding and following best practices as well as building in the cloud on Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform™, Kubernetes, containers, and applications will enable you to get the most out of your toolkit. This includes more security as you are building, more proficiency with the tools and services you are using, better structure, faster environment, a reliable system that will withstand outages, and a more cost-effective solution….

Read More

Terraform Tutorial: Drift Detection Strategies

Terraform Tutorial: Drift Detection Strategies

A common misconception among DevOps teams using infrastructure as code (IaC) tools is that the templates they use to run their deployments are infallible sources of truth. Instead, a fundamental challenge of architectures built using tools like Terraform is configuration drift. This occurs when the actual state of your infrastructure begins to accumulate changes and deviates from the configurations defined in your code. Configuration drift can occur for many reasons, regardless of how good your…

Read More

An All-in-One Well-Architected Framework Guide for Cloud Architects

An All-in-One Well-Architected Framework Guide for Cloud Architects

Source: Trend Micro Blog Not so easy, huh? Luckily, Microsoft Azure and AWS have created several white papers on the Well-Architected Framework to explain cloud architectural design principals that can help guide you through the process. For example, in the case of an Amazon S3 bucket, you need to remember to disallow public read access, ensure logging is enabled, use customer-provided keys to ensure encryption is on, and so on. With so many cloud services…

Read More

IaC: Azure Resource Manager Templates vs. Terraform

IaC: Azure Resource Manager Templates vs. Terraform

Infrastructure as code (IaC) is the process of configuring infrastructure through code instead of manually. A manual process requires operators and system administrators to configure any changes to the infrastructure. Using IaC, DevOps teams can store the infrastructure configuration code and application code in a centralized repository. IaC ensures consistent and more secure deployment. By avoiding error-prone manual configuration and deployment, security standards and policies are easier to maintain. And, DevOps engineers can improve scalability…

Read More

Microservice Security: How to Proactively Protect Apps

Microservice Security: How to Proactively Protect Apps

Microservice Security: How to Proactively Protect Apps Serverless Security Microservices are growing in popularity—how can development teams embed seamless security into the entire pipeline? Fernando Cardoso, solutions architect at Trend Micro, breaks it down for you. By: Melanie Tafelski, Fernando Cardoso January 19, 2022 Read time:  ( words) Microservices Overview As many organizations moved to serverless functions to maximize agility and performance in the cloud, microservices became the new go-to design architecture for modern web…

Read More

Top 10 Azure Cloud Configuration Mistakes

Top 10 Azure Cloud Configuration Mistakes

Top misconfigured rules for Azure services Let’s look at three top misconfigured services for Azure and the Conformity rule for that service with the highest misconfiguration rate. Service: Azure Activity LogRule(s): “Create alert for ‘delete PostgreSQL database’ events” and “create alert for ‘create/update PostgreSQL database’ events” The top misconfigured rules for Azure Activity Log are related to PostgreSQL, a fully managed database-as-a-service platform. “Create alert for ‘delete PostgreSQL database’ events” and “create alert for ‘create/update…

Read More
1 2