course-3-important-links.md

Course: Design for Security

Securing Access to Cloud Services

• Capital One breach from 2019
• Imperva breach from 2018
• OneLogin 2017

Securing Access to Cloud Infrastructure

• CyberArk
• thycotic
• AWS documentation for setting up an instance profile role
• Security best practices for your VPC
• OpenVPN on AWS

Protecting Data Stored in Cloud

• Dynamo DB Client-Side and Server-Side Encryption guide
• S3 Client-Side and Server-Side Encryption Guide
• Detailed White Paper on KMS Best Practices

Defensive Security in the Cloud

• Cfripper
• Cloudsploit
• cfn-lint
• Chef inspec
• Open policy agent / Regula
• Terrascan
• OWASP Top 10

Open source tools for monitoring cloud security

• Prowler
• Scout2
• CloudSploit
• Cloud Custodian

Commercial tools for monitoring cloud security

• Fugue
• Palo Altos
• Prisma Cloud
• Cloud Conformity

Tools for scanning Vulnerabilities in Cloud Workloads

Open source tools include:

• Clair
• Anchore
• Trivy
• etc.

Commercial products include:

• aquasec
• sysdig
• twistlock
• etc.

Use an SIEM(Security Event Information Monitoring) Tool

Log sources can be sent to SIEM tools for creating security dashboards. Many cloud security monitoring and SIEM tools have out of the box features to look at cloud native logs such as CloudTrail and VPC flow logs and identify anomalous activity.

Example vendor tools include:

• Splunk
• Sumologic,
• Lacework
• CloudKnox
• etc.