#NoDrama DevOps
  • Blog
  • About
  • Knowledge Base
    • Agile and DevOps
    • Containers
    • Cloud Security
    • Docker
    • State of App Secret Delivery
    • Strategy
  • Subscribe
Select Page

Modeling Security in Cloud Deployments

by Stephen Kuenzli | Feb 5, 2020 | AWS, Cloud, DevOps, Risk, Security, Systems

Cloud deployments often use tagging to describe the context of a compute or resource such as a who owns or what application a virtual machine or object storage bucket belongs to. However, the common resource tagging models in use don’t describe the context...

The context people and tools need to work with your Cloud

by Stephen Kuenzli | Jan 21, 2020 | AWS, Cloud, Security

Operating applications involving more than a few components without explicitly modeled contextual clues is difficult for humans and might be impossible for tools. This is especially true when people are a couple steps removed such as is often the case when analyzing...

Research: Problems with top free security assessment tools (2020q1)

by Stephen Kuenzli | Jan 15, 2020 | AWS, Cloud, DevOps, Security

I’m researching how engineers assess the security posture of their Cloud deployments and evaluate risk to those deployments so they can improve it. Reading Time: 10 minutes The research starts with these questions: What’s the hardest part about assessing...
Understanding risk using top free AWS Security tools

Understanding risk using top free AWS Security tools

by Stephen Kuenzli | Jan 13, 2020 | AWS, Cloud, Security

I’m researching how engineers assess the security posture of their Cloud deployments and evaluate risk to those deployments so they can improve understand and improve the Cloud deployment’s risk position. I identified, evaluated, and used the top free...
Continuous Delivery with Serverless, CircleCI, and Lambda: The Good, Bad, and the YAML

Continuous Delivery with Serverless, CircleCI, and Lambda: The Good, Bad, and the YAML

by Stephen Kuenzli | Jan 8, 2020 | AWS, Cloud, DevOps, Infrastructure As Code, Strategy

When I architected my SaaS’ deployment platform and delivery pipeline, I specifically sought to: maximize Aspects of a High Performance Software Delivery Processminimize components and platforms and offload as much undifferentiated, heavy lifting to focus my...
Cloud native application-level identity and access control

Cloud native application-level identity and access control

by Stephen Kuenzli | Dec 18, 2019 | AWS, Cloud, Security

The proper way to provide identities to applications on Cloud and container platforms is for the compute platform to provide that identity to the application instance . I call this the Cloud native application identity. Once the application has received its identity...
« Older Entries
Next Entries »

KEEP LEARNING

You have Successfully Subscribed!

Receive #NoDrama articles in your inbox whenever they are published.

 

Reply to Stephen and the QualiMente team when you want to dig deeper into a topic.

    nodramadevops.com by QualiMente