by Stephen Kuenzli | Apr 21, 2021 | Security
Today we’ll share a first look at how you can compare changes in AWS IAM access with k9 Security. Cloud teams tell us they need an easy way to understand how IAM access changes over time so they can review access periodically. Additionally, IAM access change...
by Stephen Kuenzli | Apr 9, 2021 | Security
AWS Access Analyzer Policy Generator analyzes an IAM user or role’s CloudTrail history and creates a least privilege IAM policy with only the actions that are in use (announcement). This policy generator looks like a great building block for minimizing AWS...
by Stephen Kuenzli | Mar 18, 2021 | Security
AWS launched Access Analyzer Policy Checks to help you develop valid, secure policies and review existing policies. This post explains what the four types of policy checks do and how to start using them. The checks are available via console, CLI, and API...
by Stephen Kuenzli | Jun 30, 2020 | Security
Creating good AWS security policies is difficult for two reasons. First, the powerful AWS security model is complex and difficult to understand. Second, application deployments are changing and growing rapidly. Why is AWS IAM so @!#^$ hard?One of our favorite...
Recent Comments