Welcome to above the clouds
AWS – Amazon EC2 Instance Connect supports SSH and RDP connectivity without public IP address
With EC2 Instance Connect Endpoint (EIC Endpoint), customers now have SSH and RDP connectivity to their EC2 instances without using public IP addresses. In past, customers assigned public IPs to their EC2 instances for remote connectivity. With EIC Endpoints, customers can have remote connectivity to their instances in private subnets, eliminating the need to use […]
AWS – Amazon Verified Permissions is now generally available
Today, AWS is announcing the general availability of Amazon Verified Permissions, service for fine-grained authorization and permissions management for applications that you build. Verified Permissions uses Cedar, an open-source language for access control, allowing you to define permissions as easy-to-understand policies. Use Verified Permissions to support role – and attribute-based access control in your applications. Read […]
Azure – General availability of Azure Front Door integration with managed identities
Azure Front Door supports using managed identity to access Key Vault without the need to generate, store, and rotate secrets. This is a secure service to service authentication method to enhance security. Read More for the details.
GCP – A better way to stay ahead of attacks: Security Command Center adds attack path simulation
To help secure increasingly complex and dynamic cloud environments, many security teams are turning to attack path analysis tools. These tools can enable them to better prioritize security findings and discover pathways that adversaries can exploit to access and compromise cloud assets such as virtual machines, databases, and storage buckets. Other attack path tools rely […]
GCP – Introducing simplified end-to-end TDIR for Chronicle
As cloud adoption continues to grow, so too does the number of cloud-born security threats. However, cloud environments can present significant opportunities to improve security with the right tools and processes in place. When it comes to effective threat detection, investigation and response (TDIR) in the cloud, modern solutions must ensure that the entire security […]
GCP – Expanding our Security AI ecosystem at Security Summit 2023
Organizations large and small are realizing that digital transformation requires a ground-up approach to modernize security. However, that digital transformation is being threatened by increasingly disruptive cyber risks and threats. At our annual Google Cloud Security Summit today, we’re sharing the latest insights into how the threat landscape is evolving and how innovations across our […]
GCP – Introducing Secure Web Proxy for egress traffic protection
Google Cloud provides multiple layers of security to help customers stay ahead of evolving threats and keep their cloud workloads safe. Today at our annual Security Summit, we are excited to announce the general availability of Secure Web Proxy, a new cloud-first network security offering that provides web egress traffic inspection, protection, and control. Secure […]
AWS – AWS Control Tower adds 10 new AWS Security Hub controls
We are excited to announce the addition of 10 new AWS Security Hub detective controls to the AWS Control Tower controls library. These new controls target services such as Amazon APIGateway, AWS CodeBuild, Amazon Elastic Compute Cloud, Amazon Elastic Load Balancer, Amazon Redshift, Amazon SageMaker, and AWS WAF. These new controls help you meet control […]
AWS – Announcing preview of the AWS Database Encryption SDK for Amazon DynamoDB
Today, we are launching preview of the AWS Database Encryption SDK, an upgrade to the existing Amazon DynamoDB Encryption Client, which enables you to include client-side encryption in your DynamoDB workloads. With this launch, you can more easily perform attribute-level encryption, enabling you to encrypt specific attribute values before storing them in your DynamoDB table. […]
AWS – Amazon Route 53 DNS resource record set permissions now available in AWS GovCloud (US) Regions
AWS GovCloud (US) Regions are designed to host sensitive data, regulated workloads, and address the most stringent U.S. government security and compliance requirements. With today’s release, Route 53 now enables customers in the AWS GovCloud (US-East and US-West) Regions to define AWS Identity and Access Management (IAM) create, edit, and delete policies for individual or […]