Let’s examine three controls customers can adopt to help keep control of their data stored in S3 or another Cloud object store while still making it accessible or manageable by third parties.
Helping customers answer security questions in the general case and preventing bad configurations from making it into the wild is one of the main themes at AWS’ inaugural Security conference, re:Inforce. They have done this by operationalizing the ‘Provable Security’ field for their services.
This post describes easy to adopt practices for running Docker application containers more securely.
There might be a relationship between an easy to measure factor that I’ll leave unnamed and Risk to your secrets. Please contribute your data.
This post introduces application containers and explains how Docker helps you package and run (crazy) applications inside neat little boxes, keeping the hosting computer nice and tidy.
You probably just spent a week working on something and it’s time for a bit of reflection and improvement. How about checking-up on your strategy? Watch this video and use these templates to take make your first strategy improvement pass in an hour.
This post shares a QualiMente Cloud Engineer’s experience and key learnings from taking the AWS Security Fundamentals Course: these pieces *do* tie together.
The Security skills needed for a Cloud migration may be in shortest supply and the most difficult to acquire. This post describes resources you can use to build Security skills throughout your engineering team and to integrate your Security Engineers with greater leverage.
(Reading Time: 1min) Trust, Bernhard Hermant If you feel like you're not getting good participation and feedback in your sprint or project retrospectives, you've got a problem. That problem might be that people don't feel safe in sharing what they really think and...
Learn how to design, build, and operate systems in the Cloud one day and concept at a time. A few times a week, Stephen Kuenzli will share his thoughts on building robust systems, architecting for and migrating to AWS, and using DevOps and engineering practices to manage complexity and deliver safely.