Tag: Cloud — jan-karel.com

"We use AWS so we're secure"

How 100 million Capital One customers were looted by an ex-AWS employee with an SSRF exploit, why the cloud isn't security, and what your people don't want to hear.

Cybersecurity

Secrets Management

In the cloud, consistency is crucial: policy in code, minimal privileges, and visibility into drift. For **Secrets Management**, automation takes the lead: guardrails...

Cybersecurity

Infrastructure as Code Security

In the cloud, consistency is crucial: policy in code, minimal permissions, and visibility into drift. For **Infrastructure as Code Security**, success depends on...

Cybersecurity

Kubernetes Hardening

Cloud environments change fast. That is why security must move with them by default and in an automated way. For **Kubernetes Hardening**, automation is the guiding principle: guardrails in code, least privilege, and continuous drift control.

Cybersecurity

Cloud Detection & Logging

Cloud environments change rapidly. That is why security here must move along by default and in an automated way. In **Cloud Detection & Logging**, value emerges...

Cybersecurity

Preventing Cloud Persistence

Cloud environments change rapidly. That is why security here must move along by default and in an automated fashion. For **Preventing Cloud Persistence**, success...

Cybersecurity

Stopping Cloud Lateral Movement

In the cloud, consistency is crucial: policy in code, minimal permissions, and visibility into drift. For **Stopping Cloud Lateral Movement**, segmentation is the lever:...

Cybersecurity

Serverless Hardening

Cloud environments change rapidly. That is why security must move along by default and in an automated fashion. For **Serverless Hardening**, automation is...

Cybersecurity

CI/CD Pipeline Hardening

In the cloud, consistency is crucial: policy in code, minimal permissions and visibility into drift. For **CI/CD Pipeline Hardening** automation is leading:...

Cybersecurity

Container Hardening

Cloud environments change rapidly. That is why security here must move along by default and in an automated fashion. For **Container Hardening**, automation is key...

Cybersecurity

GCP Hardening

Cloud environments change rapidly. That's why security here must be standard and automated. For **GCP Hardening**, automation is leading:...

Cybersecurity

Azure & Entra ID Hardening

Cloud environments change rapidly. That's why security here must be standard and automated. For **Azure & Entra ID Hardening**, automation is leading:...

Cybersecurity

AWS Hardening

Cloud environments change rapidly. That's why security here must move along as a standard and automated practice. For **AWS Hardening** automation is leading:...

Cybersecurity

Preventing Cloud Reconnaissance

In the cloud, consistency is crucial: policy in code, minimal privileges, and visibility into drift. For **Preventing Cloud Reconnaissance**, success depends on...

Cybersecurity

Cloud Security

13 chapters on securing cloud environments — AWS, Azure, GCP, containers, CI/CD, and Infrastructure as Code.