Release Date: 16/06/2024 | Issue: 242
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.
Sponsor
Cloud Tales ft. Jason Chan (fmr VP of Information Security at Netflix) Cloud Tales is a monthly online event where we sit down with a cloud hero and discuss their journey on the quest to secure their cloud. No slides, no agenda, just some stories from practitioners and leaders. During this time you can:
Hear about challenges Jason faced in his journey to the cloud as he built Netflix's security team
Learn about his career growth from an Information Technology Systems Technician to VP of Information Security
Ask questions about challenges you're facing and get advice on how to approach them
Post that describes the high-level Snowflake Access Control Model, analyzes the incident reporting released by Mandiant, and provides instructions on graphing the access model of your Snowflake deployment.
#attack #defend #saas
A detailed guide to threat hunting in your Snowflake environment, in light of an emerging threat currently targeting Snowflake customers.
#monitor #saas
๐ The CloudSec Engineer - We have a release date!
The CloudSec Engineer is a practical guide on how to enter, establish yourself, and thrive in the Cloud Security industry as an individual contributor.
The book will be available for purchase on the 27th of June 2024.
You can head over to engineer.cloudsecbooks.com to find more information about the book, its contents, and where to buy it.
It is now possible to use the SDK to update the root email address of a member account from either the Organization's management account (or delegated administrator).
Streamline compliance and security analysis using natural language query generation. Ask questions like "What errors occurred last month?" and get ready-to-run SQL queries tailored to your needs - no technical expertise required.
Amazon GuardDuty expands malware scanning to secure S3 uploads, enabling continuous monitoring and isolation of malicious files without infrastructure overhead.
New custom policy checks for critical resources, public access detection, and guided revocation to remove unused permissions - proactively securing AWS environments with tailored analysis and actionable insights.
To help mitigate the risks associated with excessive privileges and misuses of elevated access, Google announced GCP's built-in Privileged Access Manager.
Thanks for reading!
If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! ๐