“AWS Config provides AWS managed rules, which are predefined, customizable rules that AWS Config uses to evaluate whether your AWS resources comply with common best practices.” (Source) There are over 100 Managed Config Rules that AWS provides for all types of checks including Analytics, Compute, Database, Machine Learning, Security, Identity & Compliance, and Storage – Read more…
Whether it’s in or out of the cloud, most IT compliance usually comes in the form of a multitude of checklists – like the one you see below. It might be a spreadsheet, website, or other “digital” tool but, in the end, it’s still checklists that software teams must comply with by filling out forms Read more…
While enterprises are capable of rapidly scaling their infrastructure in the cloud, there’s a corresponding increase in the demand for scalable mechanisms to meet security and compliance requirements based on corporate policies, auditors, security teams, and others. For example, we can easily and rapidly launch hundreds of resources – such as EC2 instances – in Read more…
It’s 7:37 AM on a Sunday. You’re in the Security Operations Center (SOC) and alarms and emails are seemingly being triggered everywhere. You and a colleague are combing through dashboards and logs to determine what is causing these alerts. After running around with your “hair on fire” for around 30 minutes, you finally determine that Read more…
While AWS is making computing easier, it can be challenging to know how to effectively use encryption. In this screencast, we provide an overview of the encryption landscape on AWS. This includes services like AWS Certificate Manager, AWS Key Management Service, and the Encryption SDK, which provide encryption in transit and at rest. In addition, Read more…
Value stream mapping (VSM) is a technique for modeling process workflows. In software development, one of the key reasons for creating a VSM is determining the bottlenecks slowing down the delivery of value to end users. While VSM is used in many different industries (mostly related to physical goods), the topic of this post is Read more…
A great number of enterprises seek to modernize their applications for Amazon Web Services (AWS). Many find it can be challenging on which approach to embrace. Do they leverage the cloud for its capabilities or use an abstraction layer? How should product teams be organized and which practices should they adopt? In this post, we’ll Read more…
This is an older post. For newer information please check out these posts: Deployment Pipeline Compliance and Control – a Service-based Approach Continuous Compliance on AWS with CodePipeline and CloudFormation Continuous Compliance on AWS Workflow How does compliance work in many organizations? From what I’ve seen, it might look something like this: ‘Internal compliance is Read more…
Over the years at Stelligent, we’ve used many metrics and have debated on which are best for our customers. Therefore, it’s extremely beneficial to finally have a canonical source for the relevant metrics that matter to organizations that is backed by data and analysis – if for no other reason then to stop wasting time on debating the finer points of certain metrics. Read more…
Stelligent was 50 people strong at the AWS re:Invent 2018 conference in Las Vegas, NV. We were particularly proud as we announced that we are the only group at our size that is 100% AWS certified (yes, this means executives, sales, marketing, operations, and engineers). There were over 80 product announcements at the conference. Of Read more…