Avoid the 5 most common Amazon Web Services misconfigurations in build-time
In this blog post, we cover the most common AWS misconfigurations, their associated risks, and how to fix them before deployment.
These infrastructure as code benefits are your cloud security opportunities
Leverage the inherent advantages of infrastructure as code to strengthen your cloud security, save money, and enhance DevSecOps collaboration. See all the infrastructure as code benefits now.
IAM drift detection with AirIAM and GitHub Actions
Automatically detect AWS IAM drift and manage access with AirIAM and GitHub Actions.
Tutorial: Enforcing security and compliance policies in CloudFormation with Bridgecrew
Learn how to secure your AWS CloudFormation templates with Bridgecrew's continuous scanning, monitoring, and easy remediation.
How to get ephemeral access keys to an AWS account using MFA
Programmatic access makes it easier to automate tasks, but at the price of increased risk. Learn how to overcome these risks with AWS best practices on access keys management.
Security challenges and risks with infrastructure as code
Infrastructure as code is the foundation for the next generation of cloud security. In this post, we review the challenges of IaC security and how to address them.
Automating your AWS cloud security with Bridgecrew
In this overview of Bridgecrew for AWS, you’ll learn how to start finding and fixing security issues in your AWS environment in just a few minutes.
Three ways to overcome cloud DevSecOps bottlenecks
This post is the second of two parts on why DevSecOps can end up backfiring within cloud-native organizations and what you can do about it.
Bridgecrew Custom Policies: A simple standard for policy-as-code
With Bridgecrew's Custom Policies, you can easily govern your cloud infrastructure without learning a new language.
Why DevSecOps is the new bottleneck for cloud-native teams
The first of two posts on why DevSecOps can end up backfiring within cloud native organizations and what you can do about it.
Empowering Rapyd to fix critical cloud security issues with security-as-code
Bridgecrew's cloud security platform enabled Rapyd's engineering team to stay on top of industry best practices and fix cloud misconfigurations.
Securing cloud infrastructure in run-time vs. build-time
Addressing cloud security in run-time alone isn't enough. Learn the pros of doing both run-time and build-time security together.