Today, we are announcing the release of Repoman, a Python-based project for managing GitHub Repositories, Teams, and secrets, and performing an Organization backup to Azure Blob Storage. This initial blog post will cover the backup client in more detail. The full project is available on GitHub.
Read article ->Knowledge sharing
We emphasize knowledge sharing. It's our way of enhancing domain expertise and pushing the boundaries of conventional practices. Our efforts take various forms, from podcasts to technical content and presentations. Our consultants are also available for private presentations and workshops to share our insights and expertise.
Securing cloud environments becomes increasingly critical as more organizations embrace public cloud services. However, building secure cloud environments is not always straightforward, and organizations often face challenges in ensuring security, integration with existing processes, and adoption. One concept that can help address these challenges is the Landing Zone.
Read article ->O3C's approach to cybersecurity centers on a fundamental belief: they have a genuine interest in the customer's success. Coop Norway discovered this firsthand, recognizing a true partner dedicated to building a comprehensive cloud security approach tailored to Coop's needs and vision.
Read article ->"There has been a cultural shift at Storebrand," says Øyvind Bergerud, Head of Security Operations at Storebrand.
Read article ->My career in cybersecurity started with OS hardening, so I am rather passionate about the topic. When it comes to the cloud, many organizations have embraced automation. Yet, most skip hardening of the operating system or only do a bare minimum hardening baseline. I've also seen the pre-hardened CIS images used, but to my frustration, it update less frequently than other images. I am writing this as a companion post to my talk at NICConf. So, what are the options for hardening images in the cloud?
Read article ->Ever since Cody introduced me to threat modeling at our previous place of employment I have had an ever-growing interest in the field. When I saw that a conference solely dedicated to the topic was announced by a lot of people I respect in the industry I knew I had to be there. The timing of it being a “pre-con” to the OWASP 2023 Global AppSec made it a no-brainer.
Read article ->