Certified Google Cloud Architect

Author Archives: anuj - Page 37

Restricted EC2 Access Policies in AWS

anuj March 19, 2021 Restricted EC2 Access Policies in AWS2021-03-19T17:04:06+00:00 AWS No Comment

Often, in an effort to speed up development, AWS admins will grant broader access to services than is needed. As an example, to enable developers to quickly spin instances up,…

Folders and Projects in GCP

anuj March 18, 2021 Folders and Projects in GCP2022-06-22T23:45:33+00:00 Google Cloud Platform Enter your password to view comments.

This content is password protected. To view it please enter your password below: Password:

SCPs in AWS – A quick intro

anuj March 15, 2021 SCPs in AWS – A quick intro2021-03-15T15:30:28+00:00 No Comment

SCP is just like any other policy in AWS with couple of important distinctions. The two relevant attributes are action and resource. For an SCP, the resource can only be…

GCP Encrypted Traffic – How to Monitor

anuj February 3, 2021 GCP Encrypted Traffic – How to Monitor2021-06-08T00:41:56+00:00 Google Cloud Platform No Comment

By default all traffic in GCP is encrypted. How does one capture traffic in logs ( VPC Flow logs) if it is all encrypted? GCP stores (logs) a copy of…

Unsafe Practices on GCP and recommendations

anuj December 2, 2020 Unsafe Practices on GCP and recommendations2020-12-02T16:28:43+00:00 Google Cloud Platform No Comment

(Also read, AWS Security Audits ) Google Cloud is leading the way in terms of several PaaS offerings. GCP's App Engine, GKE and BigQuery are among the leaders in the…

Google Cloud Monitoring using a Storage Bucket as an Example

anuj November 26, 2020 Google Cloud Monitoring using a Storage Bucket as an Example2024-01-17T16:37:16+00:00 GCP Cloud Storage 2 Comments

Monitoring refers to Operational Metrics, as opposed to traditional logging, which refers to audit trails. In AWS, the logging (CloudTrail) is a separate service from the Monitoring (CloudWatch, Cloudwatch Events…

S3 Request Metrics, Cloudwatch Alarms

anuj November 25, 2020 S3 Request Metrics, Cloudwatch Alarms2020-11-26T07:23:59+00:00 AWS 1 Comment

Overview It is useful to get notifications (dashboard alarms and email notifications) when S3 uploads fail (request metric). Or when your bucket exceeds a certain size (Storage metric). The S3…

Policies on AWS vs GCP

anuj November 24, 2020 Policies on AWS vs GCP2020-11-24T21:42:14+00:00 AWS No Comment

Also read Programmatic Identities on Google Cloud vs AWS Policies in AWS A policy definition by itself, contains very little in AWS. It contains what type of resources (NOT the…

Azure Security Architect – Security Guardrails

anuj November 24, 2020 Azure Security Architect – Security Guardrails2021-10-05T14:23:46+00:00 Azure 1 Comment

What are some azure specific guardrails that need to be in place for a safe landing? Before you migrate even a single workload, you may want to address some of…

«‹35 363738 39 ›»