Category: AWS Identity and Access Management (IAM)

In this post, we demonstrated how to build a real-time product recommendation engine by leveraging the fully managed streaming capabilities of Amazon MSK, along with the real-time analytics and SQL capabilities of Rockset.

In this post, we share an approach using selected AWS features that help govern how buyers use your organization’s procurement workflows for their AWS Marketplace subscriptions. We show you how to integrate these features into your procurement workflow with AWS Marketplace subscriptions with minimal effort.

In this blog post, we show you how to adopt fine-tuned granular IAM control using 17 new AWS Marketplace fine-grained permission policies.  We also show how to use policies to set up permissions for tax officers, banking officers, and Know Your Customer users. And you will learn what policies to use to replace two deprecated policies.

In this post, I show how to use AWS Marketplace Vendor Insights to access security profiles associated with vendor products listed in AWS Marketplace. The AWS Marketplace Vendor Insights dashboard presents compliance artifacts and security control information for software products to help buyers complete their vendor risk assessment.

Migrating to the AWS cloud has enabled many organizations to reduce costs, innovate faster, and deliver business results more effectively. As you expand your AWS infrastructure, you require multi-account governance strategies as well as implementation of best practices to your expanded environment. AWS Control Tower implements AWS best practices to establish a well-architected, multi-account baseline […]

Cryptography and digital certificates are the security backbone of modern digital enterprises. An automated certificate lifecycle management (CLM) solution helps you efficiently manage your certificates, and, in turn, bolster your security posture. Digital transformation, cloud migration, remote work, and Internet of Things (IoT) create growth opportunities for organizations. However, they also bring security challenges of […]

For enterprise organizations, managing security and governance across hundreds or thousands of accounts can be challenging. AWS Control Tower and Lacework make this task much easier and enable seamless multi-account cloud security. By using Lacework in your AWS Control Tower environment, you can automatically and consistently apply security best practices and monitoring to new accounts […]

Having a multi-account strategy is a best practice for achieving higher isolation of resources in AWS. It helps you to meet regulatory and compliance needs, track operational costs, and add an extra layer of security. AWS Control Tower uses AWS best practices to establish a well-architected, multi-account baseline across your AWS accounts. For more information […]

During the cloud journey, some of my customers must create identity principals, such as roles or users. Engineers or services use these roles to perform their jobs in the cloud. To support this effort, Sonrai Security has developed an integration with AWS Control Tower. This integration enables you to see all of the security policies […]

Introduction Since its launch in 2014, Amazon Elastic Container Service (Amazon ECS) has simplified ways to allow you to run containerized workloads at scale. On May 27, 2021, AWS announced Amazon ECS Anywhere (ECS Anywhere), a new launch type that allows you to run containerized workloads anywhere including on premises, on virtual machines (VMs), on […]