Category: Security, Identity, & Compliance

Delve into the BeyondTrust Identity Security Insights solution and its capacity to provide organizations with a comprehensive understanding of all identities, privileges, and access, thereby illuminating their direct influence on security posture. As we navigate through an era where cloud solutions are an indispensable component of business strategies and automation is deeply integrated into daily operations, the focal point has undeniably shifted towards identity security

Starting a cloud migration process without a comprehensive and contextual understanding of your assets can be challening. With all of the advantages a cloud environment can provide, let’s dive into how you can get started. In this post, dive into how Axonius Cybersecurity Asset Management together with AWS migration services can help lay a foundation for a customer’s cloud migration strategy.

Amazon EKS has a collaboration with Kubecost, a Kubernetes and cloud cost management tool that helps customers monitor, track, optimize, and govern their cloud and Kubernetes spending. Kubecost can be installed easily in a few minutes, but many customers are looking for a cloud-native way to expose Kubecost UI for their internal team to access the costs report. This post describes how to authenticate Kubecost users via Application Load Balancer and Amazon Cognito.

The security pillar of the AWS Well-Architected Framework describes how to take advantage of cloud technologies to protect data, systems, and assets in a way that improves security posture. The security pillar doesn’t just apply to AWS regions and Availability Zones but also to hybrid cloud solutions on premises. In this post, we’ll focus on security using AWS Snowball Edge and how Palo Alto Network’s VM-Series firewall is deployed and configured to secure access to a 5G core application providing cellular 5G connectivity.

Originally focused on healthcare, HITRUST is now used by organizations across industries to demonstrate regulatory compliance and risk management to a global audience. Learn how organizations can enhance the efficiency of their HITRUST compliance with A-LIGN’s compliance automation platform. A-SCEND integrates with AWS to automate evidence collection and continuously monitor cloud security in accordance with Center for Internet Security benchmarks.

There is no easier way to run HTTPS-enabled static websites on AWS than by using Amazon CloudFront and Amazon S3. In this post, we’ll look at automating website deployment on AWS using AWS Cloud Development Kit (AWS CDK) and TypeScript. We’ll use the architecture that combines CloudFront as the content delivery network, AWS Certificate Manager for secure certificate provisioning, Amazon S3 for reliable website hosting, and Amazon Route 53 as the domain name system.

Many of the requirements for meeting and maintaining a secure environment can be met by using AWS FedRAMP-authorized regions and services, which can simplify and reduce costs of the process. Over 2,000 government agencies and other entities that provide services to government agencies are using AWS services today. Learn how Antivirus for Amazon S3 by Cloud Storage Security can be used to automate malware scanning for application workflows or data ingestion pipelines to achieve data security and compliance.

In today’s fast-evolving digital landscape, security remains a concern for organizations of all sizes. As the threat landscape evolves, so do the solutions that address these challenges. The AWS Security Competency for ISVs aligns partner cyber security offerings to the needs of AWS customers, which is why the program now includes the “Data Security Posture Management” use case in the Data Protection category, and the “Temporary Elevated Access Management” use case in the Identity and Access Management category.

When building out a CI/CD pipeline, there are ways to proactively harden your pipelines when they need to access environments in AWS accounts. Given that your pipeline will have create and destroy access to critical components of your AWS-based environments, it’s important to evaluate how GitLab Runner authenticates and authorizes for access to your AWS accounts. Learn how the new OpenID Connect (OIDC) for GitLab CI/CD jobs can help you access AWS services using GitLab.

As organizations continue to expand their cloud infrastructure, they have ongoing requirements to connect their AWS environments to other cloud providers. However, connecting different cloud networks seamlessly and securely can be a challenge due to varying networking architectures, security models, and operational tools. Learn how Aviatrix Systems simplifies this process and enables businesses to fully leverage AWS while easily connecting to other cloud providers.