DevSecOps for auto healing PCI DSS 3.2.1 violations in AWS using custom AWS Config conformance packs, AWS Systems Manager and AWS CodePipeline

If you migrate your workloads to the cloud to modernize your applications or secure infrastructure and operations, you’ll find these migrations are increasingly performed with a DevOps methodology that incorporates continuous development, integration, and testing. It is always a best practice to incorporate security as code in your DevOps workflows Read more…

Controlling and auditing data exploration activities with Amazon SageMaker Studio and AWS Lake Formation

Highly-regulated industries, such as financial services, are often required to audit all access to their data. This includes auditing exploratory activities performed by data scientists, who usually query data from within machine learning (ML) notebooks. This post walks you through the steps to implement access control and auditing capabilities on Read more…

Enhancing the AWS Well-Architected Tool to Provide Continuous Compliance with Trend Micro Cloud One – Conformity

By Paul Hortop, Head of Security at Trend Micro Conformity Increasingly, Amazon Web Services (AWS) customers are seeing the benefits of adopting the AWS Well-Architected Framework. It helps cloud architects build secure, high-performing, resilient, and efficient infrastructure for their applications and workloads. In this post, I will explore how to Read more…

Easily configure Amazon DevOps Guru across multiple accounts and Regions using AWS CloudFormation StackSets

As applications become increasingly distributed and complex, operators need more automated practices to maintain application availability and reduce the time and effort spent on detecting, debugging, and resolving operational issues. Enter Amazon DevOps Guru (preview). Amazon DevOps Guru is a machine learning (ML) powered service that gives you a simpler Read more…