AWS Startups Blog

Category: Security, Identity, & Compliance

How HackerOne Uses the Cloud to Fix Security Vulnerabilities at Scale

83,000. That’s how many security vulnerabilities HackerOne has fixed to date thanks to hacker-supplied reports to their platform. “The data speaks for itself,” says Reed Loden, HackerOne’s director of security. “The types of vulnerabilities, the complexity to the vulnerabilities, the cleverness to the vulnerabilities is stuff that you’re just not going find from paying just a variety of security consultancy firms…  it all comes down to number of people.”

Read More
James Neville of Citizen.is

Making Data Safer: Citizen’s James Neville Talks Biometric Authentication

As our online lives expand and businesses find new and better ways to provide everyday services via the internet, it can feel like increasing amounts of our sensitive data are in the hands of companies without stellar track records of keeping that data safe. James Neville, CEO and founder of Citizen, a one-touch login and registration app, hopes to change that metric. “We were working in payments, and it struck us how loose the security was around personal data when compared to card or bank accounts,” he explains. “And it’s only gotten worse over the years.” He’s right.

Read More

Starting with strong security in the AWS cloud

Security is often viewed as too difficult or that it requires too many special skills to do well. That’s ridiculous. It’s a core part of development and operations. After all, who wants to write bad code or constantly fix an unstable service?

Read More
How Segment Uses Okta to Secure Access to 100 Accounts

How Segment uses Okta to secure access to dozens of accounts

Segment receives billions of events from our customers daily and has grown into dozens of AWS accounts. Expanding into many more accounts was necessary in order to best align with our GDPR and security initiatives. In order to continue scaling gracefully, we are centrally managing employee access to AWS with terraform and our identity provider. To organize the expansion into numerous accounts, we needed a mechanism to control our accounts, which accounts employees have access to, and each employee’s permissions in each account.

Read More

How to get started on AWS (From a dead standstill)

Want to build a database-backed website, or the backend to a mobile app? Set up a WordPress or Drupal site, or just use an Amazon S3 bucket to store files? You can do all this and much more on AWS, but first you’ll need to create an account and set it up. Let’s walk through how to do that from scratch—while following best practices and making sure your account is securely configured to take full advantage of all that AWS offers.

Read More
DataDome's Bot Fighters

DataDome duo Benjamin Fabre and Benjamin Barrier on bot detection, risk mitigation, and being three-time entrepreneurs

When people talk about “serial entrepreneurs,” they are talking about folks like Benjamin Fabre and Benjamin Barrier. Longtime friends and colleagues, Fabre and Barrier are currently working on their third startup together and choose as their focus: robots.

Read More