Category: Security, Identity, & Compliance

At re:Invent 2018, AWS announced Private Marketplace, a feature that helps customers govern third-party software procurement from AWS Marketplace. In this post, I share some best practices that help you follow the principle of least privilege and implement access control using IAM and service control policies (SCPs) in AWS Organizations to set up a well-architected […]

The term “endpoints” usually refers to user devices, such as laptops and servers. Cloud-based endpoints, however, include more than just the device: databases, instances, services, and applications. As endpoints have changed, endpoint security has expanded from a simple antivirus solution to an integrated set of advanced visibility and security features. Endpoint security solutions now offer […]

Firewalls provide a security layer by giving you control over which traffic you allow to access your web applications. Web Appliction Firewalls such as AWS Web Application Firewall (AWS WAF) do this by allowing you to customize web security rules to define which traffic can access your applications and which traffic should be blocked. While […]

If you’re involved in a migration project for your company that is moving to the AWS Cloud, you’ll likely go through a variety of stages, such as migration preparation, portfolio discovery, planning, and design. In most cases, the rubber hits the road after these stages, and you begin migrating your physical, virtual, or cloud-based infrastructur­­­­­e […]

Security practitioners designing and implementing solutions on Amazon Web Services (AWS) have a breadth of AWS services and third-party Independent Software Vendor (ISV) security solutions to help them customize and control security. AWS services can help you enable relevant controls for key security use cases and lay the foundation for a stronger overall security posture. […]

AWS Marketplace is a digital catalog that enables qualified Independent Software Vendors (ISVs) to market software solutions and makes it easy for AWS customers to find, buy, and deploy software on AWS. In this post, I will explain a use case where CloudFormation template is a better fit than a Single-AMI solution, and then I […]

Overview AWS Marketplace is a digital catalog of software solutions from independent software vendors (ISVs) that offer a variety of pricing options, including SaaS contracts, hourly billing, annual licenses, and private offers for their software products. Almost half of these AMI products offer annual subscription options, so customers often ask me how to know when […]

AWS Marketplace is a curated digital catalog that lists thousands of software solutions with flexible pricing options. SaaS contracts, hourly billing, annual licenses, and private offers are examples of different payment options to choose from. Typically, when customers are in the procurement process, they use multiple linked accounts to subscribe to these products with several […]

Update on 4/20/2020:  In addition to this blog, AWS Marketplace released Private Marketplace feature that lets administrators create a curated list of products authorized users can purchase from. For more information, see documentation and blogs.  Update on 1/20/2021:  In addition to this blog, you can use managed entitlements, a new feature of AWS License Manager […]

In this post, I will summarize the principles discussed in the recent AWS Marketplace webinar, “Making the Move from DevOps to DevSecOps.” If you are on your journey to the cloud with AWS, you are probably already using some DevOps approaches, so you can spin up new Virtual Machines (VMs), test, stage, and deploy applications […]