My previous post detailed the process to install AWS Landing Zone Accelerator (LZA) within an existing Control Tower environment. While the process wasn't trivial or all that well documented, it did result in a successfully deployed LZA. What are the benefits that LZA provides out of the box beyond a basic Control Tower deployment? Using … Continue reading AWS Landing Zone Accelerator Features: Beyond Control Tower
I participated as a delegate for Cloud Field Day 16 on Jan 25, 2023. This was a hybrid event that took place at the Forward Networks office in Santa Clara, CA. For those unfamiliar with Cloud Field Day, you can learn more about all of the Field Day events over at TechFieldDay.com. Cloud Field Day … Continue reading Networking Takes Center Stage at Cloud Field Day 16
I was invited to participate as a delegate for Cloud Field Day 13 from Feb. 16 - 18, 2022 in San Jose, CA. Check out my day one recap and day two recap if you missed them earlier. Day three consisted of presentations from StormForge, RackN and Fortinet StormForge StormForge was relatively unknown to me … Continue reading CFD13 Day Three Recap – StormForge, RackN and Fortinet
With this post, we'll conclude this series covering the most common AWS Security Event Root Causes. To recap, the six most common AWS security incident root causes are: Unintended disclosure of security credentials and secretsCustomer does not ensure the complete accuracy of their AWS account informationInsecure AWS resource configurationInactive response to GuardDuty and other detective controls and … Continue reading Common AWS Security Event Root Causes – Notes – Part #3
Hello everyone! In many ways, it feels like "forever" since I last wrote anything. So much has happened since the last post but between surgeries, back problems, customer projects, and some PTO, I felt an urge to sit down and see if I could put a few sentences together and jump back into this multipart … Continue reading Common AWS Security Event Root Causes – Notes – Part #2
Last week I attended an interesting webinar with an engineer from the AWS Customer Incident Response team talk about the most common AWS Security Incident Root Causes. What was fascinating, to me anyway, is that the destructive power of these root causes can be minimized by following standard security best practices. Without further ado, are … Continue reading Common AWS Security Event Root Causes – Notes – Part #1
Overview If you’re building an AWS Organization, or getting ready to deploy a new organization using AWS Control Tower, be advised that there are very helpful AWS services that can be integrated into your organization. In this “Be sure to integrate…” series, we’ll look at 3 baseline services that should be enabled and integrated into … Continue reading Building an AWS Organization? Be sure to integrate….AWS GuardDuty
Overview If you're building an AWS Organization, or getting ready to deploy a new organization using AWS Control Tower, be advised that there are very helpful AWS services that can be integrated into your organization. In this "Be sure to integrate..." series, we'll look at 3 baseline services that should be enabled and integrated into … Continue reading Building an AWS Organization? Be sure to integrate….AWS Security Hub
Recently, I have been studying for and fortunately passed the AWS Certified Security Specialty exam. Unlike the AWS Associate and Professional certifications for which there seems to be no shortage of study material, I found that study material for the AWS Security Specialty, especially a book, is less common. You may be asking and I'll … Continue reading AWS Security Specialty Exam Prep, a Book Review: “AWS Certified Security – Specialty” by Zeal Vora
Just a link to a post I wrote about AWS Security Hub on the World Wide Technology digital platform...go check it out! An Introduction to AWS Security Hub
