Securing the Cloud #26

Welcome to the 26th edition of the Securing the Cloud Newsletter! In this issue, we dive into the latest trends and insights in cloud security, explore career development opportunities, and share valuable learning resources. Additionally, we feature insightful perspectives from our community members.

Technical Topic

  • Community | Threat Detection and Management for Beginners – In this series, introduce the world of threat detection and management in the cloud and cybersecurity ecosystem, explaining key security terms, exploring the potential of generative AI, and providing a practical use case involving a distributed denial of service (DDoS) attack. This is the first of 6 articles in this series, so be sure to go through them all. They are all available, and if you start from the beginning you can follow along through them all, and at the end create a Generative AI application that interprets your CloudWatch logs. I’m excited about this series so PLEASE share your feedback.

Career Corner

  • Navigating Knowledge Hoarding in IT – Here a a few strategies for overcoming knowledge hoarding in the workplace, such as building positive relationships, seeking mentors, utilizing formal training resources, and fostering a collaborative culture. In this article, I talk about the root causes of this issue and provides practical tips to navigate these challenges effectively.

Learning and Education

  • Strategies for Technical Certification Exam Success – This article has some tips for acing the AWS Solutions Architect Associate certification exam (or any exam really), from familiarizing yourself with the testing environment to leveraging practice exams and seeking external feedback. I share a recent experience I had with my youngest son (the wounds are fresh) highlighting the importance of preparation beyond just studying the content.

Community Voice

  1. Let’s CI/CD! How Agile x CI/CD Complement Each Other, Increasing Efficiency by Over 98%! | by 林家瑋 (Ray Lin) | 大Ray | Apr, 2024 | Medium – Ray Lin explains how agile development combined with continuous integration and deployment (CI/CD) allows software teams to rapidly deliver customer value through short iterations while maintaining high quality and security.
  2. Resolve 90% of Cloud Incidents with RECIPE PICKS – Securosis – Rich Mogull introduces a brilliant mnemonic called “RECIPE PICKS” to help streamline cloud incident response.
  3. My Backdoors to Your AWS Infrastructure – Part 1: Public EC2 – Michal provides an insightful look into potential backdoors in AWS environments, highlighting how seemingly harmless permissions can be exploited to gain unauthorized access.
  4. My Backdoors in your AWS infrastructure – Part 2: IAM – Stephane Hurtaud talks about the intricate world of AWS Identity and Access Management (IAM) backdoors. He highlights various techniques that could potentially lead to unauthorized access, emphasizing the importance of adhering to the principle of least privilege.
  5. [Discover thousands of collaborative articles on 2500+ skills](https://www.linkedin.com/pulse/my-backdoors-your-aws-infrastructure-part-3-network-micha%C5%82-brygidyn) – This article provides insightful tips to maintain passion for web development well into your late career while achieving work-life balance.

I hope you’ve found this edition useful. I encourage you to subscribe, share, and leave your comments on this edition of the newsletter below. Happy Labbing!

Leave a Reply