Access Keys: An Unintended Backdoor-by-Design to Azure Storage Accounts Data
Learn the importance of understanding the assignments of Azure resource roles when giving permissions....
The AWS Shared Responsibility Model: Everything You Need to Know
What the shared responsibility model means, its many challenges & how to protect your cloud infrastructure....
AWS Resource Provisioning with Attribute Based Access Control (ABAC): What You Need To Know
ABAC offers highly dynamic control of the actions that principals can perform on resources, however there are some things you need to pay attention to when using ABAC in order to avoid unnecessary security gaps....
The Importance of Identity and Access Management (IAM) in Cloud Infrastructure
How to manage human and service identities, and their entitlements, to secure your cloud infrastructure....
Why Privileged Access Management (PAM) Fails Cloud Infrastructure…and What to do About it
PAM, its challenges for AWS, GCP and Azure environments — and CIEM as a solution....
Using AWS Condition Context Keys to Reduce Risk: A Least Privilege Cheat Sheet
As strong advocates of least privilege, we believe these AWS keys can be quite effective — if they can be easily understood. Here’s a handy guide....
Least Privilege Policy: Automated Analysis Trumps Native AWS Tools
Here’s what you need to know about AWS methods for granting and controlling access, plus native tools for detecting and repairing excessive permissions....
The ABCs of Azure Identity Governance Tools
Discover the main Azure mechanisms for governing identities and providing access permissions....
AWS’s Access Analyzer Preview Access is Great — But Is It Enough?
Learn the ins and outs of the preview access capability in Access Analyzer....
Deconstructing Azure Access Management using RBAC
Take a focused look at the basics of Azure RBAC (role based access control) -- the main mechanism in Azure for granting permissions to resources. Familiarize you with Azure AD identities and find out how to grant them access to your organization’s resources....
Keep Your IAM Users Close, Keep Your Third Parties Even Closer
Technical and legal controls that you take for granted when managing cybersecurity policy within your organization are usually out of reach when a third party is compromised....
Auditing iam:PassRole: A Problematic Privilege Escalation Permission
How to determine which identities need iam:PassRole to help enforce “use it or lose it” least privilege....
