Tanishka Marrottcloud-design-diaries.hashnode.dev·Oct 1, 2024How We Prevent Privilege Escalation with AWS IAM Permission Boundaries (A Practical DevOps Guide)In environments like ours, it’s crucial to strike a balance between DevOps flexibility and tight security controls. Imagine a scenario where DevOps members can create admin roles for team members—but, we need to ensure that these admins cannot furthe...Discuss·5 likespermission boundaries
Tanishka Marrottcloud-design-diaries.hashnode.dev·Sep 25, 2024Versioning and Rollback Mechanisms for SCPs in Mission-Critical EnvironmentsWhen managing Service Control Policies (SCPs) in production-level, mission-critical AWS environments, it's vital to ensure that policy changes don't inadvertently disrupt workflows or lock your teams out of critical systems. To achieve this, integrat...Discuss·3 likesAWS
Tanishka Marrottcloud-design-diaries.hashnode.dev·Aug 11, 2024Crafting a Holistic Security Posture with Organization Policy Constraints (OPCs) and Service Control Policies (SCPs)As a member of the cloud security team, it’s crucial to understand how these tools work, their technical implementations, and the scenarios where exceptions might be necessary. Let’s explore the top 5 OPCs and SCPs that can bolster your organization'...Discuss·1 likeAWS
Abdul Hakimahakimx.com·Nov 18, 2022Service Control Policies pada AWS OrganizationsOverview Pada tulisan kali ini kita akan membuat control policies dengan membuat organizational unit production dan development. Jika sebelumnya kita sudah membuat organization, kali ini kita akan membuat policy yang bisa diterapkan kedalam akun. Leb...Discuss·27 readsAWS#AWSOrganization