Giving Databricks a step up on maintaining least-privilege IAM
Our case study with Databricks shows how Bridgecrew enabled them to right-size their IAM through automation and the implementation of security-as-code.
Why your CSPM might be falling short
Learn why modern cloud-native needs call for solutions in infrastructure as code over the traditional CSPM model.
Getting started with automated cloud security in 4 steps
Learn how to assess your current cloud security needs, design a plan to get cloud visibility, implement cloud security automation processes, and press play!
Avoid the 5 most common Amazon Web Services misconfigurations in build-time
In this blog post, we cover the most common AWS misconfigurations, their associated risks, and how to fix them before deployment.
These infrastructure as code benefits are your cloud security opportunities
Leverage the inherent benefits of infrastructure as code to strengthen your cloud security, save money, and enhance DevSecOps collaboration.
IAM drift detection with AirIAM and GitHub Actions
Automatically detect AWS IAM drift and manage access with AirIAM and GitHub Actions.
Tutorial: Enforcing security and compliance policies in CloudFormation with Bridgecrew
Learn how to secure your AWS CloudFormation templates with Bridgecrew's continuous scanning, monitoring, and easy remediation.
How to get ephemeral access keys to an AWS account using MFA
Programmatic access makes it easier to automate tasks, but at the price of increased risk. Learn how to overcome these risks with AWS best practices on access keys management.
Security challenges and risks with infrastructure as code
Infrastructure as code is the foundation for the next generation of cloud security. In this post, we review the challenges of IaC security and how to address them.
Automating your AWS cloud security with Bridgecrew
In this overview of Bridgecrew for AWS, you’ll learn how to start finding and fixing security issues in your AWS environment in just a few minutes.
Three ways to overcome cloud DevSecOps bottlenecks
This post is the second of two parts on why DevSecOps can end up backfiring within cloud-native organizations and what you can do about it.
Bridgecrew Custom Policies: A simple standard for policy-as-code
With Bridgecrew's Custom Policies, you can easily govern your cloud infrastructure without learning a new language.