Why AWS IAM is hard, and what to do about it

AWS IAM is hard, but what can we do about it? IAM is hard. And we need to understand why IAM is hard and what to do about it. To uncover why IAM is hard, k9 Security interviewed +50 Cloud practitioners privately about their challenges and solutions configuring IAM...

AWS Access Analyzer Policy Checks Explained

AWS launched Access Analyzer Policy Checks to help you develop valid, secure policies and review existing policies. This post explains what the four types of policy checks do and how to start using them. The checks are available via console, CLI, and API...

Why are good AWS security policies so difficult?

Creating good AWS security policies is difficult for two reasons. First, the powerful AWS security model is complex and difficult to understand.  Second, application deployments are changing and growing rapidly. Why is AWS IAM so @!#^$ hard?One of our favorite...