Category: Security, Identity, & Compliance

AWS Marketplace now offers a new category of solutions to help you integrate third-party software with AWS Control Tower. AWS Control Tower provides a way to set up and govern a new, secure, multi-account AWS environment. It is based on best practices established through the experience working with thousands of enterprises as they move to […]

You can also get demos and education from 11 sellers (rotating daily) in the AWS Partner Solutions Experience in the southwest corner of the Venetian expo hall. You can follow AWS re:Invent on Twitter or the #reinvent hashtag for live updates during the event. Please double-check the AWS re:Invent event catalog to confirm the date, […]

Please double-check the AWS re:Invent event catalog to confirm the date, time, and venue for your session! You can also get demos and education from 11 sellers (rotating daily) in the AWS Partner Solutions Experience in the southwest corner of the Venetian expo hall. You can follow AWS re:Invent on Twitter or the #reinvent hashtag […]

The enterprise customers I work with use AWS Control Tower to set up and govern their secure multi-account AWS environments. They want to enable their technology users to find, buy, and immediately start using software from AWS Marketplace to run on their environments. At the same time, they also want to restrict AWS Marketplace purchases […]

  Installing a web application firewall (WAF) in your virtual private cloud (VPC) protects your applications against sophisticated threats. Possible threats include Structure Query Language (SQL) injection, cross-site scripting (XSS), malware uploads, and application Distributed Denial of Service (DDoS) attacks. Installing a WAF can improve overall application performance while mitigating risks. Most WAFs include built-in […]

At re:Invent 2018, AWS announced Private Marketplace, a feature that helps customers govern third-party software procurement from AWS Marketplace. In this post, I share some best practices that help you follow the principle of least privilege and implement access control using IAM and service control policies (SCPs) in AWS Organizations to set up a well-architected […]

The term “endpoints” usually refers to user devices, such as laptops and servers. Cloud-based endpoints, however, include more than just the device: databases, instances, services, and applications. As endpoints have changed, endpoint security has expanded from a simple antivirus solution to an integrated set of advanced visibility and security features. Endpoint security solutions now offer […]

Firewalls provide a security layer by giving you control over which traffic you allow to access your web applications. Web Appliction Firewalls such as AWS Web Application Firewall (AWS WAF) do this by allowing you to customize web security rules to define which traffic can access your applications and which traffic should be blocked. While […]

If you’re involved in a migration project for your company that is moving to the AWS Cloud, you’ll likely go through a variety of stages, such as migration preparation, portfolio discovery, planning, and design. In most cases, the rubber hits the road after these stages, and you begin migrating your physical, virtual, or cloud-based infrastructur­­­­­e […]

Security practitioners designing and implementing solutions on Amazon Web Services (AWS) have a breadth of AWS services and third-party Independent Software Vendor (ISV) security solutions to help them customize and control security. AWS services can help you enable relevant controls for key security use cases and lay the foundation for a stronger overall security posture. […]