Chris Wong’s Post

Read about strategies and practices for securing your AWS environments

The rapid expansion of cloud-native technologies poses security and compliance challenges across enterprise layers. Discover how #NeuVectorPrime boosts security on #AWS in this on-demand webinar. Safeguard every container app confidently. Find it on the #AWSMarketplace for self-service access and full lifecycle #ZeroTrust container security. Don't miss out, register here: https://okt.to/34GvcL #security #NeuVectorPrime #AWS #AWSMarketplace #ZeroTrust

**Hey everyone! ** I'm excited to share my latest blog post, "Streamlining Security: Automating ScoutSuite Scans on AWS" In this post, I delve into how to automate ScoutSuite scans on AWS to ensure consistent and efficient security testing. This can be especially beneficial for organizations that manage large AWS deployments. If you're looking to streamline your security processes and improve your AWS security posture, this post is for you! Here's a quick glimpse of what you'll learn: The benefits of automating ScoutSuite scans on AWS How to configure AWS credentials for ScoutSuite How to use the ScoutSuite API to automate scans Tips for integrating automated scans into your CI/CD pipeline I'd love to hear your thoughts and feedback in the comments below! https://lnkd.in/ewqdwFFT

Kubernetes Security on AWS: A Practical Guide

Very often we need to setup secure access to non-public AWS resources. Setting up a VPN is the obvious solution but can seem daunting. Luckily Datafutures's very own Deeksha Gunde put together this nice little article and IAC code to make things easy. https://lnkd.in/gK32f6BD #aws #terraform

I’m beyond excited to share that my very first tech article has just been published! 🎉 In this piece, I walk through setting up VPN access to private AWS resources, turning what can be a tiresome task into something more manageable using IaC. A big thank you to Elliott Cordo, for his encouragement and valuable feedback throughout this journey. #AWS #VPN #InfrastructureAsCode

🚀 𝐒𝐜𝐚𝐥𝐢𝐧𝐠 𝐰𝐢𝐭𝐡 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲: 𝐀𝐖𝐒 𝐀𝐮𝐭𝐨 𝐒𝐜𝐚𝐥𝐢𝐧𝐠 𝐄𝐬𝐬𝐞𝐧𝐭𝐢𝐚𝐥𝐬 AWS Auto Scaling ensures your application scales effortlessly with demand, but security must stay top of mind as you grow. 🔒 𝐒𝐭𝐚𝐫𝐭 𝐒𝐞𝐜𝐮𝐫𝐞: Use hardened AMIs to ensure every new instance is protected from launch. 🛡️ 𝐂𝐨𝐧𝐭𝐫𝐨𝐥 𝐀𝐜𝐜𝐞𝐬𝐬: Enforce the least privilege in IAM roles to limit permissions and reduce risks. 🌐 𝐍𝐞𝐭𝐰𝐨𝐫𝐤 𝐈𝐬𝐨𝐥𝐚𝐭𝐢𝐨𝐧: Keep instances within a VPC for added security and monitor traffic with VPC Flow Logs. 🔄 𝐀𝐮𝐭𝐨𝐦𝐚𝐭𝐞 𝐏𝐚𝐭𝐜𝐡𝐢𝐧𝐠: Use AWS Systems Manager to apply security patches across all instances automatically. 𝘚𝘤𝘢𝘭𝘦 𝘴𝘮𝘢𝘳𝘵, 𝘴𝘵𝘢𝘺 𝘴𝘦𝘤𝘶𝘳𝘦! 𝘓𝘦𝘢𝘳𝘯 𝘮𝘰𝘳𝘦 𝘢𝘣𝘰𝘶𝘵 𝘴𝘦𝘤𝘶𝘳𝘪𝘯𝘨 𝘈𝘞𝘚 𝘈𝘶𝘵𝘰 𝘚𝘤𝘢𝘭𝘪𝘯𝘨. ➡ https://lnkd.in/gCFH2EiU #AWS #CloudSecurity #AutoScaling #SecureCloud #CloudComputing #CloudOptimization #CloudInfrastructure #DevOps #CloudBestPractices #AWSSecurity #awsautoscaling #securityconsiderationwithawsautoscaling #awsautoscalingsecuritybestpractices

🔶 Check out this post on Security Centralization for AWS Multi-account using Native Services! The post goes through the native tools that organizations can utilize to centralize compliance, logging, monitoring, and user & access management through multi-accounts. The post provides valuable insights into the topic and is a must-read for anyone working with AWS. Check it out here:- #aws #awssecurity #cloudsecurity #compliance #logging #monitoring #usermanagement #identityaccessmanagement #accounts #security

One component of AWS that is often overlooked by teams starting out is setting up oversight and restrictions on what users can do. Many companies just create groups of users or access keys with the full AdministratorAccess profile allowing them to do anything. AWS Startup Security Baseline (SSB) is a set of pre-defined controls that align more with best practices from a security point of view. The following article (and the other in the series) from Anthony Wat details how to use Terraform to put these SSB controls in place and give your team a much better security posture. https://lnkd.in/eassyuAX