A Modern Shift-Left Security Approach

Source:-https://www.forbes.com The concept of shifting security left is not new, but historically this has meant little more than inserting security processes in the middle of development and slowing everything down. In this article, I’ll describe older shift-left methods that have not worked — and how a modern approach to shifting left can have a high impact on risk reduction and create a healthy balance of freedom and responsibility for cloud-native development teams. I believe CISOs have no choice but to

Read more

Fortinet collaborates with AWS to deliver integrated next-generation firewall

Source:-https://www.dqindia.com Fortinet announced new integrations with Amazon Web Services (AWS) to further provide customers with advanced security across their cloud platforms, applications, and network. Fortinet’s cloud security solutions – including its virtual next-generation firewall, FortiGate-VM and web application firewall (WAF), FortiWeb – are designed to protect workloads and business applications across on-premises data centers and cloud environments. Fortinet is continuing to provide a broad set of natively integrated security solutions using AWS to provide customers with full visibility and control

Read more

What is AWS CloudFormation?

Source:-techradar.com The sinews and muscles that make cloud computing function are just as important as the web and mobile applications that run on top of it. While many companies are focused on the features available in the apps, increasing user adoption of an app, or focusing on revenue generated from a service that runs on the web, there is also the underlying infrastructure that makes those app work reliably and at a high-performance level. For the most part, a cloud

Read more

Tailor and create compliance rules with this AWS Config tutorial

Source:-searchaws.techtarget.com Get started with this guide to AWS Config rules. Learn how to customize AWS Config managed rules with CloudFormation and create new rules with AWS Lambda. There’s more to AWS Config than just out-of-box rules. Most organizations have specific compliance needs and must tailor their cloud compliance rules to meet those challenges — demands that AWS Config can accommodate. In this AWS Config tutorial, we’ll walk through the different ways to customize Config rules. The first approach is to

Read more

Set up continuous compliance on AWS with Config managed rules

Source:-searchaws.techtarget.com It’s difficult to meet cloud compliance demands with manual practices. Establish a continuous compliance posture with AWS Config managed rules and best practices.Manual compliance practices can’t keep up with the speed and scale of the cloud, which is why admins need a combination of automation and orchestration to solidify their compliance posture on AWS. AWS Config enables users to implement a continuous compliance cloud environment with preconfigured rules that set and monitor desired configuration settings. With AWS Config best practices in

Read more

When to use AWS OpsWorks vs. CloudFormation or Elastic Beanstalk

Source:-searchaws.techtarget.com There are multiple ways to define and deploy resources on AWS. Break down when to use the different AWS configuration management tools and how they integrate together. IT teams can programmatically deploy and dispose of entire application stacks on AWS — and they have multiple ways to do so. That range of options on AWS can make it difficult to choose the best configuration management tools or practices. Let’s compare a trio of Amazon cloud services — AWS OpsWorks

Read more

AWS CloudFormation public roadmap released after user gripes

Source:techtarget.com AWS CloudFormation users now have a public roadmap, which should help them plan use of the infrastructure-as-code tool. But AWS hasn’t promised faster CloudFormation development. AWS has delivered on a pledge of greater transparency into its development plans with the release of a public roadmap for CloudFormation, the highly popular infrastructure-as-code framework that some users complain doesn’t keep close enough pace with AWS service releases. AWS CloudFormation usage has grown at a rapid pace, but AWS has given scalability

Read more

DevOps shops weather growing pains with infrastructure-as-code tools

Source – searchitoperations.techtarget.com IT operations pros increasingly rely on infrastructure-as-code tools to keep up with DevOps, but these tools have advanced almost as quickly as the new apps sys admins have to support. Established infrastructure-as-code companies Chef and Puppet have recently remodeled their tools to support containers and their underlying infrastructure. Chef overhauled its codebase into three major open source projects last year, and users are still trying to understand its Habitat product. Puppet introduced its own roadmap last quarter to bolster its container

Read more