Demystifying Policy as Code Non Technical Guide Effective Governance

ScaleSec Blog

Sarah Gori10 min read

Deep Dive on the Cybersecurity Executive Order

Themes, requirements, and implementation expectations driven by the Cybersecurity ...
Start Reading
Ilan Ponimansky8 min read

Battle of Policy as Code Tools: OPA vs. Semgrep

Evaluating major Policy as Code tools for usability and performance.
Start Reading
John Porter4 min read

The Missing Half - Network Security and Squid

Easy and low-cost URL filtering via Squid proxy.
Start Reading
Allison DiPietro4 min read

Cybersecurity Executive Order: a tl;dr

What the White House’s Executive Order on Cybersecurity means for software companies, and ...
Start Reading
Mike Fuller13 min read

SecOps Automation

Automating Security Operations in AWS by improving CIS Benchmark Alerts with EventBridge
Start Reading
Eric Evans8 min read

Cloud-First API Security

APIs can be secured using AWS and GCP cloud native technologies and architectures.
Start Reading
Anthony DiMarco7 min read

Practical Attribute-Based Access Control with AWS

An explanation of attribute-based access control (ABAC) and some practical examples of ...
Start Reading
Aaron Rea5 min read

Tips for a Successful Cloud Security Consulting Engagement

Lessons and heuristics from successful consulting engagements.
Start Reading
Steven Adegbenle7 min read

Creating A GitHub App to Validate IAM Policies

Continuous IAM Policy Feedback with GitHub Apps.
Start Reading
Michael Flanigan2 min read

Engagement Guardrails

How to navigate around potential engagement speedbumps.
Start Reading
Load more posts