By Robert Patt-Corner, Principal Consultant and Cloud Architect at EGlobalTech By Chris Weilemann, Solutions Architect at AWS Many of our enterprise customers at EGlobalTech improve project security by segregating individual projects, or project environments like DEV or PROD, in separate Amazon Web Services (AWS) accounts. Mapping each project or project Read more…
Each AWS service requires explicit access to resources, endpoints, and objects that reside in the domain of another service. This is referred to as the permission boundary. Services like AWS Config, Amazon Macie, and AWS GuardDuty require an AWS Identity and Access Management (IAM) role that grants access to resources Read more…
If you migrate your workloads to the cloud to modernize your applications or secure infrastructure and operations, you’ll find these migrations are increasingly performed with a DevOps methodology that incorporates continuous development, integration, and testing. It is always a best practice to incorporate security as code in your DevOps workflows Read more…
Active Directory administrators are accustomed to managing domain resources using Remote Server Administrators Tools (RSAT) installed on either their workstations or a member server in the domain. When it comes to managing resources on a managed Active Directory service, such as the case with AWS Managed Microsoft AD, these tools Read more…
Highly-regulated industries, such as financial services, are often required to audit all access to their data. This includes auditing exploratory activities performed by data scientists, who usually query data from within machine learning (ML) notebooks. This post walks you through the steps to implement access control and auditing capabilities on Read more…
By Luke Synnestvedt, Sr. Associate at PwC By Harry Lu, Sr. Manager at PwC By Nitesh Dhanjani, Principal at PwC It seems that every organization has either fully adopted a DevOps/Agile deployment model these days, or has strongly considered adopting one. The DevOps train is not only coming down the Read more…
Amazon Redshift data sharing allows for a secure and easy way to share live data for read purposes across Amazon Redshift clusters. Amazon Redshift is a fast, fully managed cloud data warehouse that makes it simple and cost-effective to analyze all your data using standard SQL and your existing business Read more…
By Paul Hortop, Head of Security at Trend Micro Conformity Increasingly, Amazon Web Services (AWS) customers are seeing the benefits of adopting the AWS Well-Architected Framework. It helps cloud architects build secure, high-performing, resilient, and efficient infrastructure for their applications and workloads. In this post, I will explore how to Read more…
As applications become increasingly distributed and complex, operators need more automated practices to maintain application availability and reduce the time and effort spent on detecting, debugging, and resolving operational issues. Enter Amazon DevOps Guru (preview). Amazon DevOps Guru is a machine learning (ML) powered service that gives you a simpler Read more…
Torkel Ödegaard was fed up. As a developer and architect, he says he struggled to get people on his team to instrument their applications and services and build dashboards to make analyzing and understanding the company’s application data over time easier. In our recent interview, Torkel says his former employer Read more…