Awesome, congratulations!
I’ve heard good things about the AWS Security Specialty certificate too. I’ve done a course for it which was great, though I never bothered to take the certificate (I don’t feel the need for it). Have you considered it?
Getting rid of long living access keys is such a win.
Adding an SCP to block creation is mentioned last in the blog post, but I’d sat that’s the first thing one should do. That way the problem won’t grow as you remove the existing ones (which might take a lot of time).
Good blog post indeed! Not exactly ground breaking but considering how common the problem is I don’t blame them for writing it.
They say it’s cloud breach by I didn’t see what kind of cloud breach. Did I just miss it or was it not mentioned?
“Beyond the AWS Security Maturity Roadmap” by Rami and “Google Cloud Threat Detection: A Study in Google Cloud” by Day were my favourites. Though I’ve only seen about half so far.
I say most, if not all, are good but since the talks often are niche it depends on what you’re after.
Looks like you’re right. It’s not mentioned on that page but here he says he’s the one running it.
Well done, congratz!