Setting up AWS WorkSpaces and Instance-based Windows File Share in a Microsoft Managed AD-backed…This solution includes the creation of a Microsoft Managed AD to support a WorkSpaces deployment. Additionally, it includes the creation of…Jun 24Jun 24
Corrective Controls for Public Resources (SSM Documents, EBS Snapshots)I hope to come back and expand on this and give code examples for the resolution, but for the time being…May 15, 2021May 15, 2021
Initial Impressions of Governing Delegated Administration for CloudFormation StackSetsI saw a conversation happening on LinkedIn after the announcement of Delegated Administration for CloudFormation StackSets and concerns…Mar 2, 2021Mar 2, 2021
Getting Started with JQ to Manipulating Outputs from the AWS CLI — NotesI know jq is far more powerful than what is represented here. This is an attempt to have a place to refer back to since I always have to…Dec 6, 20201Dec 6, 20201
Control Improvements for Distribution of Approved AMIsEnforcing the use of approved and secured resources within AWS compute just got simpler. Thanks to a recent update by AWS, organizations…Dec 5, 2020Dec 5, 2020
Managing Baseline AMIs at Scale with Systems Manager and CloudFormationManaging baseline AMIs is critical to providing a secure, quick to production solution. Working on outdated images that require compliance…Nov 1, 2020Nov 1, 2020
What to Expect — Remote AWS Certification with PearsonPrior to all certification tests, I poke around on reddit, etc. to get a feeling for what others have experienced with the test that I’m…Sep 9, 2020Sep 9, 2020
Operationalizing GuardDuty FindingsMany organizations have established Security Programs that include a Security Information and Event Management solution or application…Sep 3, 2020Sep 3, 2020
Enforcing Standard Resources With Service Catalog at Scale with Least PrivilegeHaving defined new standards and begun remediation efforts, it becomes obvious when innovation begins to outpace governance. Teams start…May 31, 2020May 31, 2020
Decouple Resource Policies from Their PrincipalsIn attempting to ready all new accounts for provisioning of resources through our CICD pipeline, we needed to create roles that trusted…Apr 29, 20201Apr 29, 20201