Blog Posts
- Home /
- Blog Posts
Centralize IAM by integrating Entra ID with AWS IAM Identity Center via SAML and SCIM.
This blog post walks you through setting up an Entra ID Enterprise Application for AWS IAM Identity Center, connecting Entra ID for SSO, syncing users and groups, and creating a unified IAM experience across your cloud environment.
Read More
Using IAM Roles Anywhere to Eliminate Static AWS Credentials
In this blog, I’ll guide you through the process of setting up AWS IAM Roles Anywhere to securely provide temporary AWS credentials for your external workloads, eliminating the need for static credentials and enhancing your security posture.
Read More
Monitor Critical IAM Actions in AWS Using AWS CloudTrail and Amazon Simple Notification Service
This blog post explains how to monitor AWS IAM activity with AWS CloudTrail, EventBridge, and Amazon SNS to track critical API calls in real time, enhancing security and compliance.
Read More
Enable effortless and serverless App streaming using Amazon AppStream 2.0 Elastic Fleets
This blog post explores how Amazon AppStream 2.0 enables businesses to efficiently and securely stream applications to users, offering a scalable and cost-effective solution for accessing desktop applications from anywhere.
Read More
Setup an AWS KMS custom key store using AWS CloudHSM
In this blog, I’ll walk you through how you can leverage a CloudHSM custom key store to gain full control over your cryptographic keys and operations, ensuring compliance with stringent security standards while maintaining the flexibility of AWS cloud services.
Read More
Building a transactional data lake using Lake Formation and Apache Iceberg Part 3
This blog covers building a transactional Data Lake on S3 with AWS LakeFormation, Apache Iceberg, and Terraform. In Part 3, we integrate a BI workload by consolidating Iceberg data and creating a QuickSight dashboard for insights.
Read MoreBuilding a transactional data lake using Lake Formation and Apache Iceberg Part 2
This blog covers using AWS LakeFormation, Apache Iceberg, and Terraform to build a transactional Data Lake on S3. In Part 2, we set up AWS Glue ELT pipelines to clean and transform raw data into Iceberg tables for analytics.
Read MoreBuilding a transactional data lake using Lake Formation and Apache Iceberg Part 1
This blog explores using AWS LakeFormation, Apache Iceberg, and Terraform to build a transactional Data Lake on S3. In Part 1, we set up the Data Lake and ingest data from a sample source using AWS DMS.
Read More
Building a Cloud SIEM with AWS OpenSearch Security Analytics
In this blog post, I'll show you how to build a lightweight SIEM system in AWS using AWS OpenSearch and its Security Analytics features, combined with Zeek. This solution enables real-time monitoring of cloud network traffic and generates alerts when potential threats are detected.
Read More
Build a scalable IDS and IPS solution using Suricata and AWS Gateway Load Balancer
In this blog post, I will demonstrate how to leverage Suricata with the AWS Gateway Load Balancer and Terraform to implement a highly available, scalable, and cost-effective IDS/IPS solution in AWS. This approach will enable you to monitor network traffic, detect threats, and block them before they reach your systems.
Read MoreCategories
Tags
- alb
- api gateway
- appstream
- aws
- cicd
- cloudhsm
- cloudtrail
- codebuild
- codecommit
- codedeploy
- codepipeline
- data analytics
- dynamodb
- ec2
- ecs
- efs
- entra
- eventbridge
- flyway
- github
- glue
- gwlb
- iac
- iam
- iceberg
- jenkins
- kms
- lakeformation
- lambda
- level-200
- level-400
- msk
- network
- network-firewall
- oidc
- opa
- packer
- quicksight
- rds
- route53
- s3
- security
- serverless
- sns
- ssm
- stepfunctions
- suricata
- swagger
- terraform
- transit gateway
- vpc
- vpn
- well-architected
- zeek