by Stephen Kuenzli | May 13, 2020 | AWS, Cloud, Security
Last week I presented ‘Secure an S3 Bucket (and still use it)’ at the Phoenix DevOps meetup. I’m trying to help people understand why and how to protect every S3 bucket with data that needs to remain confidential. We hosted the meetup using Zoom....
by Stephen Kuenzli | Apr 10, 2020 | AWS, Cloud, Security
Securing data in S3 is a nightmare for many people. Data breaches from insecure AWS S3 buckets make the news weekly and it’s not just clickbait. AWS Simple Storage Service (S3) is the world’s most successful object storage service. It offers a wide set of...
by Stephen Kuenzli | Apr 2, 2020 | Cloud, DevOps, Risk, Security, Strategy
Ever stared at a screenful of Cloud resources and wondered: Who owns this resource? What application does it belong to?Who should we call when the application is broken?Who should pay for this resource? Which applications are driving our costs?Do access controls...
by Stephen Kuenzli | Jan 31, 2020 | Cloud, Risk, Security, Systems
Reading Time: 6 minutes The current crop of Best Practice tagging schemes and recommendations don’t describe the context required for people or tools to assess security or manage risk easily. But I never explained why risk management is important nor how to...
by Stephen Kuenzli | Jan 27, 2020 | Cloud, DevOps, Security
Shift Left, Photo by Nick Fewings I hit an obstacle on my way to extending the common resource tagging models with context to describe security and risk attributes. I couldn’t get past that while I feel this should be a settled engineering practice, it...