by Stephen Kuenzli | Apr 6, 2021 | AWS, Cloud, DevOps, Infrastructure As Code, Security, Strategy, Systems
Hey – I’m back! I’ve been heads-down learning what Cloud teams need to deliver to AWS securely and make IAM usable, and building that into a business delivered via SaaS & infrastructure code libraries: k9 Security. I’d like to share my... 
by Stephen Kuenzli | Aug 24, 2020 | AWS, Cloud, DevOps
Flow by Hamish Weir I am building a product that runs on AWS. I am currently solo and that means I do it all: development, delivery, and operations. The main reason I built the application using serverless technology was to offload as much of the operational workload... 
by Stephen Kuenzli | May 13, 2020 | AWS, Cloud, Security
Last week I presented ‘Secure an S3 Bucket (and still use it)’ at the Phoenix DevOps meetup. I’m trying to help people understand why and how to protect every S3 bucket with data that needs to remain confidential. We hosted the meetup using Zoom.... 
by Stephen Kuenzli | Apr 10, 2020 | AWS, Cloud, Security
Securing data in S3 is a nightmare for many people. Data breaches from insecure AWS S3 buckets make the news weekly and it’s not just clickbait. AWS Simple Storage Service (S3) is the world’s most successful object storage service. It offers a wide set of... 
by Stephen Kuenzli | Apr 2, 2020 | Cloud, DevOps, Risk, Security, Strategy
Ever stared at a screenful of Cloud resources and wondered: Who owns this resource? What application does it belong to?Who should we call when the application is broken?Who should pay for this resource? Which applications are driving our costs?Do access controls... 
by Stephen Kuenzli | Feb 13, 2020 | AWS, Cloud, DevOps, Risk
RT: 5 minutes Modeling Risk in Cloud Deployments described how to estimate and record threat impact and likelihood information in tags applied to Cloud resources such as databases and object stores. You can compute the risk of those threats by plugging that impact and... 