Hello Folks, a few times, we had situations where looking for best practices in IAM for a particular project based in AWS. Here I share an exciting URL with best practices to apply on AWS for IAM; I hope this helps you to deploy Identity Security policies and strategies. https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html?secd_iam7 Peter Diaz
Category:Cloud Security
Microsoft GitHub–Azure Sentinel repository.
Hello Folks, here is the most exciting repository to work with Azure Sentinel. When you need a script, workbook, parsers, notebooks, or a simple example of how to do automation, go to this site. https://github.com/Azure/Azure-Sentinel If you have the information, you have the power. Peter Diaz
Microsoft Ninja Training are available.
Hello Lads, Microsoft is launching a series of ninja training highly recommended; please feel free to share it with your cybersecurity network. All training is free. Ninja Training Microsoft Sentinel Microsoft Defender for Cloud Azure Network Security Microsoft Defender Threat Intelligence Microsoft Defender for IoT Microsoft Defender for Cloud Apps Peter Diaz.
Registration Open | Fall 2021 Microsoft Security Public Community Webinars
We are excited to share with you our Fall 2021 webinar series! For registration, please visit https://aka.ms/SecurityWebinars. Microsoft Security is committed to putting customers at the center of everything we do, and their insights are critical components to improving our products and services. As a participant in our community, customers will have the opportunity …
Continue reading Registration Open | Fall 2021 Microsoft Security Public Community Webinars
What’s the difference between Azure Security Center, Azure Defender and Azure Sentinel?
It’s common to have a pre-defined perspective when you hear the word “security”. Some people think of applications being configured correctly or insecure coding practices. Some people think of identity concepts like password spray attacks, phishing or multi factor authentication. And some people think of infrastructure concepts like networking, VPNs and port scanning. Security is …
Continue reading What’s the difference between Azure Security Center, Azure Defender and Azure Sentinel?
What’s Ransomware for dummies?
Ransomware is a type of malware that encrypts files and folders, preventing access to important files. Ransomware attempts to extort money from victims by asking for money, usually in form of cryptocurrencies, in exchange for the decryption key. But cybercriminals won’t always follow through and unlock the files they encrypted. The trend towards increasingly sophisticated …
Continue reading What’s Ransomware for dummies?
Microsoft Azure Rapid 7 Integration for Vulnerability Management
Microsoft Azure Microsoft Azure is a complete cloud platform with infrastructure, software, and applications available as services. Azure can complement an on-premises infrastructure as an extension of your organization’s technical assets. When using Azure in your environment, whether you opt for the cloud or on-premises option, security and monitoring are still an essential part of …
Continue reading Microsoft Azure Rapid 7 Integration for Vulnerability Management
Use ACM Private CA for Amazon API Gateway Mutual TLS
Last year Amazon API Gateway announced certificate-based mutual Transport Layer Security (TLS) authentication. Mutual TLS (mTLS) authenticates the server to the client, and requests the client to send an X.509 certificate to prove its identity as well. This way, both parties are authenticated to each other. In a previous post, you can learn how to …
Continue reading Use ACM Private CA for Amazon API Gateway Mutual TLS
Alibaba Cloud SSL Certificates Service
SSL Certificates Service applies to the following scenarios: Encrypt website data The HTTP protocol does not support data encryption. This may cause problems such as data leaks, data tampering, and phishing attacks. After you install an SSL certificate on your website, this website encrypts website data over the HTTPS protocol during data transmission. This can …
Continue reading Alibaba Cloud SSL Certificates Service
Strengthen and optimize compliance in Azure Security Center
The Regulatory Compliance dashboard in Azure Security Center is an excellent tool for helping organizations understand their compliance posture relative to industry standards. Reporting on compliance with specific standards is obviously critical for regulated customers, though tracking compliance status is also relevant to many other organizations who want to align with industry-defined best practices. Many …
Continue reading Strengthen and optimize compliance in Azure Security Center