From the cloud providers
AWS Compliance Center
The AWS Compliance Center offers a central location to research cloud-related regulatory requirements and how they impact different industries. Select the country you are interested in, and the AWS Compliance Center will display the countryโs regulatory position regarding the adoption of cloud services.
How to define least-privileged permissions for actions called by AWS services
AWS IAM now includes condition keys to make it easier to grant only the minimum level of access necessary for IAM principals (users and roles) and AWS services to take those actions. Using the aws:CalledVia condition key, you can create distinct access rules for the actions performed by your IAM principals, and for the subsequent actions taken by AWS services on your behalf. You could, for example, enforce that all actions for a principal are to or via CloudFormation.
How to use the AWS Security Hub PCI DSS v3.2.1 standard
AWS added partial support for PCI DSS version 3.2.1 requirements to AWS Security Hub. This post covers how to use the AWS Security Hub PCI DSS v3.2.1 standard, interpret your security score, remediate failed security checks, and more.
New Application Manager brings GitOps to Google Kubernetes Engine
Google released Application Manager, an application delivery solution delivered as an add-on to GKE. Now available in beta, Application Manager allows developers to easily create a dev-to-production application delivery flow, while incorporating Google's best practices for managing release configurations.
Azure Firewall Manager now supports virtual networks
Last November Microsoft introduced Azure Firewall Manager preview for Azure Firewall policy and route management in secured virtual hubs. This week, the Azure Firewall Manager preview has been extended to include automatic deployment and central security policy management.
|