by Stephen Kuenzli | May 9, 2026 | Security
“I’m sorry, Dave. I’m afraid I can’t do that.” NIST said it more politely on April 15. The NVD change is permanent, not a temporary glitch. CVE volume has outpaced NIST’s analysis capacity. For 25 years, vulnerability-management...
by Stephen Kuenzli | Apr 2, 2026 | AI, Security
We’re building an AI agent that triages cloud security findings. It reads a finding from AWS Security Hub or Prowler, assesses the risk, and tells an engineer exactly what to do about it with specific AWS CLI commands they can run. The agent worked. We had 620...
by Stephen Kuenzli | Dec 16, 2025 | Security
The AWS Identity and Organization teams launched some big improvements to IAM in 2025. Read on for a quick introduction to the six changes we think are most likely to help you make an impact securing your AWS organization and identities: Enforce MFA for root users...
by Stephen Kuenzli | Oct 1, 2025 | Security
Security teams have long been challenged by security findings scattered across many tools in proprietary formats that don’t play well together. If you’re managing AWS Security Hub findings and need to analyze them alongside data from other security tools,...
by Chase Christy | Aug 22, 2025 | Announcements, Security
k9 Security now automates two critical IAM security review processes and produces high-signal findings in Open Cybersecurity Schema Framework (OCSF) format. This new capability significantly enhances your ability to identify and address critical IAM security risks in...
by Chase Christy | Aug 15, 2025 | Guest blogs
This article was originally written by Cloudanix Introduction The way we manage access in AWS has changed IAM dramatically. When many organizations first ventured into the cloud, creating individual AWS IAM users directly within each account was standard practice....
Recent Comments