View Blog Post

Continuous Compliance on AWS with CodePipeline and CloudFormation

Whether it’s in or out of the cloud, most IT compliance usually comes in the form of a multitude of checklists – like the one you see below. It might be a spreadsheet, website, or other “digital” tool but, in the end, it’s still checklists that software teams must comply with by filling out forms Read more…

View Blog Post

Continuous Compliance on AWS Workflow

It’s 7:37 AM on a Sunday. You’re in the Security Operations Center (SOC) and alarms and emails are seemingly being triggered everywhere. You and a colleague are combing through dashboards and logs to determine what is causing these alerts. After running around with your “hair on fire” for around 30 minutes, you finally determine that Read more…

View Blog Post

Dance like Nobody’s Watching; Encrypt like Everyone Is

While AWS is making computing easier, it can be challenging to know how to effectively use encryption. In this screencast, we provide an overview of the encryption landscape on AWS. This includes services like AWS Certificate Manager, AWS Key Management Service, and the Encryption SDK, which provide encryption in transit and at rest. In addition, Read more…

View Blog Post

AWS CodePipeline Approval Gate Tracking

With the pursuit of DevOps automation and CI/CD (Continuous Integration/Continuous Delivery), many companies are now migrating their applications onto the AWS cloud to take advantage of the service capabilities AWS has to offer. AWS provides native tools to help achieve CI/CD and one of the most core services they provide for that is AWS CodePipeline. Read more…

View Blog Post

Continuous Compliance on AWS using AWS Config Rules

This is an older post. For newer information please check out these posts: Deployment Pipeline Compliance and Control – a Service-based Approach Continuous Compliance on AWS with CodePipeline and CloudFormation Continuous Compliance on AWS Workflow How does compliance work in many organizations? From what I’ve seen, it might look something like this: ‘Internal compliance is Read more…

View Blog Post

DevOps on AWS Radio: Containers on AWS with Casey Lee (Episode 21)

In this episode, Paul Duvall speaks with Stelligent Chief Architect and VP of Engineering & Delivery Casey Lee about containers on AWS. Casey, an AWS Container Hero dives deep into Amazon ECS, Amazon EKS, AWS Fargate and the open source tools used in the Kubernetes world. Paul and Casey also discuss some best practices when it comes to implementing containers Read more…

View Blog Post

DevOps on AWS Radio: DevOps Philosophies with James Martin at 3M HIS (Episode 20)

In this episode, Paul Duvall speaks with VP of Engineering & Delivery Casey Lee on a brief preview of next months episode. Casey touches on some of the new features and updates added to open-source, full-stack DevOps on AWS tool mu.  Paul Duvall also speaks with James Martin, an Automation Engineering Manager at 3M HIS on team structure, his philosophies behind choosing Read more…

View Blog Post

DevOps on AWS Radio: Continuous Integration, Continuous Delivery and DevOps with Paul Julius (Episode 19)

In this episode, Paul Duvall and Brian Jakovich cover recent DevOps on AWS news along with a discussion with one of the founding fathers of Continuous Integration, Paul Julius.  Here are the show notes: DevOps on AWS News DevOps on AWS News:  mu 1.5.4 Support for the new SSM Session Manager Support for SSM Inventory Read more…