Welcome to above the clouds

AWS – AWS Security Incident Response achieves HITRUST Certification
AWS Security Incident Response is now Health Information Trust Alliance Common Security Framework (HITRUST CSF) certified, demonstrating its alignment with stringent security and privacy requirements established by HITRUST for managing sensitive data. This certification validates that AWS Security Incident Response meets comprehensive security controls required by healthcare, life sciences and many other regulated sectors. HITRUST […]

AWS – AWS Security Incident Response introduces integrations with ITSM
AWS Security Incident Response now offers seamless integration with popular IT Service Management (ITSM) tools like Jira and ServiceNow, enabling you to respond faster to security incidents while maintaining your existing processes and operating models. These integrations provide bidirectional synchronization, allowing you to create, update, and delete issues in either platform with automatic data replication […]

AWS – Amazon Managed Service for Apache Flink now supports Customer Managed Keys (CMK)
Amazon Managed Service for Apache Flink now supports Amazon Key Management Service (KMS) Customer Managed Keys (CMK). Amazon Managed Service for Apache Flink has always provided encryption by default using AWS-owned KMS keys. Now, customers have the option to use their own Customer Managed Keys providing greater control on how they can encrypt data stored […]

GCP – IP address management made easy: Announcing auto IPAM for GKE clusters
Managing IP addresses in Kubernetes can be a complex and daunting task — but a crucial one. In Google Kubernetes Engine (GKE), it’s important that you manage IP addresses effectively, given the resource-constrained IPv4 address space. Sub-optimal configurations can lead to: IP inefficiency: Poor utilization of the limited IPv4 address space Complexity: Significant administrative overhead […]

GCP – Going beyond basic data security with Google Cloud DSPM
In the age of data democratization and generative AI, the way organizations handle data has changed dramatically. This evolution creates opportunities — and security risks. The challenge for security teams isn’t just about protecting data; it’s about scaling security and compliance to meet this new reality. While traditional security controls are vital to risk mitigation, […]

GCP – Streamline auditing: Compliance Manager is now in preview
As organizations increase their focus on security and regulatory compliance, Google Cloud is helping our customers meet these obligations by fostering better collaboration between security and compliance teams, and the wider organization they serve. To help simplify and enhance how organizations manage security, privacy, and compliance in the cloud, we’re thrilled to announce that Google […]

GCP – Here’s which Google AI developer tool to use for each situation
Do you remember packing for an extended trip twenty years ago? We had to load up a camera, a day planner, a pile of books, a handheld gaming device, a map-stuffed tourist guide, a phone, a CD player, and maybe some cashier’s checks. Now? Just remember your smartphone! This is an example of consolidation, but […]

AWS – AWS Billing and Cost Management now provides customizable Dashboards
Today, AWS announces the general availability of AWS Billing and Cost Management Dashboards, a new feature within AWS Billing and Cost Management that helps you visualize and analyze your AWS spending in one consolidated view. This feature enables you to create customized dashboards that combine data from AWS Cost Explorer and Savings Plans and Reserved […]

GCP – A Cereal Offender: Analyzing the CORNFLAKE.V3 Backdoor
Written by: Marco Galli Welcome to the Frontline Bulletin Series Straight from Mandiant Threat Defense, the “Frontline Bulletin” series brings you the latest on the most intriguing compromises we are seeing in the wild right now, equipping our community to understand and respond to the most compelling threats we observe. This edition dissects an infection […]
GCP – Announcing new capabilities for enabling defenders and securing AI innovation
Post Content Read More for the details.