This week's articles
Equifax Controls Framework
Equifax has released an open-source controls framework that provides security guidance for cloud-native applications. The framework includes a set of controls that are mapped to security frameworks such as NIST.
Cloud Security Jobs
A job board for cloud security professionals that scans and compiles the best open positions, from entry level to CISO (executive).
My Love/Hate Relationship with Cloud Custodian
Cloud Custodian is a powerful tool for managing and enforcing policies in cloud environments, but it can be difficult to learn and use effectively. The author shares their experiences with using Cloud Custodian, including its benefits and drawbacks, and offers tips for getting started with the tool.
An AWS IAM Wishlist
#aws, #defend, #iam
A wishlist of AWS IAM feature requests: IAM Authorization Debugging, Mapping of API Calls/IAM Permissions/CloudTrail Events, SCP Audit Mode, SCP for Resources, and API Request Parameters as Condition Keys.
Cloud Run Security design overview
This article outlines the security features provided by Cloud Run, including automatic TLS encryption, secure communication between services, and integration with Cloud IAM for access control.
Manage multiple Terraform projects in monorepo
#aws, #azure, #build, #terraform
A look at one possible way to organize and manage a monorepo setup, which will contain multiple projects and Terraform modules, with deployments spanning across multiple targets such as AWS accounts or Azure subscriptions.
Secure Data Sharing: Charting a course for the EU's Digital Future
Palantir, a data analytics company, has published a report proposing a framework for secure data sharing in the European Union. The report suggests that data should be shared in a way that preserves privacy and security, while also enabling innovation. The framework includes a set of principles and best practices for data sharing, as well as recommendations for policy and regulatory changes.