cloud security Archives - Jean-Christoph von Oertzen

Webinar Takeaway: Getting Started in Pentesting The Cloud – Azure

jean-christoph — Thu, 27 May 2021 18:09:24 +0000

My key takeaways Hybrid environments make cloud to on-prem pivoting possible 3 attack surfaces external: public buckets internal resource access: internal to cloud internal api access: identify vulns via API calls & configuration analysis Azure and O365 are not the same Azure Resouce Manager : Subscriptions and Resources Microsoft Office 365: Productivity O365 accounts get […]

The post Webinar Takeaway: Getting Started in Pentesting The Cloud – Azure appeared first on Jean-Christoph von Oertzen.

Webinar Takeaway: How to build a security observability strategy in AWS

jean-christoph — Thu, 22 Apr 2021 10:08:56 +0000

My key takeaways AWS CloudTrail: think of a master switch for the stack MTTR³ = Mean time to respond, resolve and recovery metrics giving valuable insights also for cloud security Possible steps in an automation playbook collect and aggregate event data determine anomalous behaviour and events determine appropriate response action build triggers to kick of […]

The post Webinar Takeaway: How to build a security observability strategy in AWS appeared first on Jean-Christoph von Oertzen.