How To Set Up AWS Organizations For Success
This article is a HOW-TO for how to setup your AWS Organization properly allowing you to deploy services and controls across your AWS Accounts.
AWS Re:Inforce 2019 Summary
AWS (Amazon Web Services) had their first security focused conference this year. It was basically an opportunity for AWS to release security related products and features but also create a gathering for security minded practitioners and those looking to consume security related information around AWS products.
Using AWS Service Control Policies To Protect All Your AWS Accounts
AWS SCP is a maturing AWS Organization feature that allows you to apply IAM-like policies at the organizational level.
AWS Secrets Manager, CLI, and JQ
AWS Secrets Manager provides a way to securely store and retrieve secrets. I test it, and what if an application was using the secret.
You Just Got An AWS Security Audit… Now What?
So you successfully ran Trusted Advisor, Scout2, Access Advisor, or hired an external firm to audit your AWS accounts? You found that the co-founder is still logging in using root keys and that you have security groups allowing 0.0.0.0/0 access from the internet. Not to mention the 20 developers offshore that are sharing the same IAM user and access keys. Oops!