Category: Security, Identity, & Compliance

Please double-check the AWS re:Invent event catalog to confirm the date, time, and venue for your session! You can also get demos and education from 11 sellers (rotating daily) in the AWS Partner Solutions Experience in the southwest corner of the Venetian expo hall. You can follow AWS re:Invent on Twitter or the #reinvent hashtag […]

The enterprise customers I work with use AWS Control Tower to set up and govern their secure multi-account AWS environments. They want to enable their technology users to find, buy, and immediately start using software from AWS Marketplace to run on their environments. At the same time, they also want to restrict AWS Marketplace purchases […]

  Installing a web application firewall (WAF) in your virtual private cloud (VPC) protects your applications against sophisticated threats. Possible threats include Structure Query Language (SQL) injection, cross-site scripting (XSS), malware uploads, and application Distributed Denial of Service (DDoS) attacks. Installing a WAF can improve overall application performance while mitigating risks. Most WAFs include built-in […]

At re:Invent 2018, AWS announced Private Marketplace, a feature that helps customers govern third-party software procurement from AWS Marketplace. In this post, I share some best practices that help you follow the principle of least privilege and implement access control using IAM and service control policies (SCPs) in AWS Organizations to set up a well-architected […]

The term “endpoints” usually refers to user devices, such as laptops and servers. Cloud-based endpoints, however, include more than just the device: databases, instances, services, and applications. As endpoints have changed, endpoint security has expanded from a simple antivirus solution to an integrated set of advanced visibility and security features. Endpoint security solutions now offer […]

Firewalls provide a security layer by giving you control over which traffic you allow to access your web applications. Web Appliction Firewalls such as AWS Web Application Firewall (AWS WAF) do this by allowing you to customize web security rules to define which traffic can access your applications and which traffic should be blocked. While […]

If you’re involved in a migration project for your company that is moving to the AWS Cloud, you’ll likely go through a variety of stages, such as migration preparation, portfolio discovery, planning, and design. In most cases, the rubber hits the road after these stages, and you begin migrating your physical, virtual, or cloud-based infrastructur­­­­­e […]

Security practitioners designing and implementing solutions on Amazon Web Services (AWS) have a breadth of AWS services and third-party Independent Software Vendor (ISV) security solutions to help them customize and control security. AWS services can help you enable relevant controls for key security use cases and lay the foundation for a stronger overall security posture. […]

AWS Marketplace is a digital catalog that enables qualified Independent Software Vendors (ISVs) to market software solutions and makes it easy for AWS customers to find, buy, and deploy software on AWS. In this post, I will explain a use case where CloudFormation template is a better fit than a Single-AMI solution, and then I […]

Overview AWS Marketplace is a digital catalog of software solutions from independent software vendors (ISVs) that offer a variety of pricing options, including SaaS contracts, hourly billing, annual licenses, and private offers for their software products. Almost half of these AMI products offer annual subscription options, so customers often ask me how to know when […]