A threat intel feed, or threat intelligence feed, provides a continuous incoming flow of data related to cyber threats and risks.

Understanding the key security tools at each layer of the cloud and what matters most for your organization’s maturity

Breaches.cloud - Your Source for Public Cloud Security Mistakes

None

Build your multi-account AWS cloud environment, enabling you to scale your cloud infrastructure in a secure and resilient manner.

A clean, straightforward way to monitor your services from the cloud

Get a sneak peek at Wiz's 2024 Cloud Security Compensation Report with 5 key facts about salaries across different roles and industries within cloud security.

AWS Security Maturity Model

Get started integrating security at critical points during your cloud adoption efforts and operations.

We’re announcing the release of a second version of our threat matrix for storage services, a structured tool that assists in identifying and analyzing potential security threats on data stored in cloud storage services.

Generates runbooks for GuardDuty findings. Contribute to aquia-inc/aws-guardduty-runbook-generator development by creating an account on GitHub.

Background

A hands-on style weekly newsletter for cloud security professional, including executives, focused on latest cloud security (especially AWS) news/releases/trends. Click to read AWS Cloud Security Weekly, by AWS-CloudSec Weekly Newsletter, a Substack publication. Launched a month ago.

Discover Effective AWS Security Monitoring Strategies. Combining the right AWS services is key when setting up AWS Security Monitoring.

Google Cloud CISO Phil Venables talks with Royal Hansen, vice president of Privacy, Safety, and Security Engineering at Google, about red teaming AI and the Aspen Security Forum.

Incident Response in AWS made easy (easier 😉)

An open-source service control policies management tool

Service Control Policies (SCPs) can be a great way to prevent actions from happening in AWS accounts. In this post, we will illustrate a specific use case of SCPs that protects the security baseline, or landing zone, configuration you’ve created for accounts

Datadog Cloud Security Atlas is a risk register for Threats and Vulnerabilities. This database gives you the ability to search and filter on your cloud provider platform, risk type, and sort by impact, exploitability, and recency.,Test out the search below by searching for specific cloud services like EBS or S3. From there you can chart your own course to understanding risk that relates to your environment.

Cloud vulnerabilities database - an open project to list all known cloud vulnerabilities and Cloud Service Provider security issues

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs. - GitHub - iknowjason/Awesome-CloudSec-Labs: Awesome free clou...

Example AWS Service control policies to get started or mature your usage of AWS SCPs. - service-control-policy-examples/Deny-changes-to-security-services at main · aws-samples/service-control-polic...

Stuff for social media

AWS Security Maturity Model

Example AWS Service control policies to get started or mature your usage of AWS SCPs. - GitHub - aws-samples/service-control-policy-examples: Example AWS Service control policies to get started or ...

Artificial Intelligence Infrastructure-as-Code Generator. - gofireflyio/aiac: Artificial Intelligence Infrastructure-as-Code Generator.

Learn to build production-ready serverless applications on AWS

What are the threats in letting an AWS service manage the encryption of your data instead of creating a Customer Managed Key?