Demystifying Policy as Code Non Technical Guide Effective Governance

ScaleSec Blog

Ilan Ponimansky8 min read

Battle of Policy as Code Tools: OPA vs. Semgrep

Evaluating major Policy as Code tools for usability and performance.
Start Reading
Allison DiPietro4 min read

Cybersecurity Executive Order: a tl;dr

What the White House’s Executive Order on Cybersecurity means for software companies, and ...
Start Reading
Mike Fuller13 min read

SecOps Automation

Automating Security Operations in AWS by improving CIS Benchmark Alerts with EventBridge
Start Reading
Eric Evans8 min read

Cloud-First API Security

APIs can be secured using AWS and GCP cloud native technologies and architectures.
Start Reading
Jason Dyke9 min read

Access GCP from AWS using Workload Identity Federation

Workload Identity federation allows cloud users to access GCP resources from AWS without ...
Start Reading
Julianna DiPrima4 min read

Staying on the Cutting Edge of Cloud

A main ingredient to ScaleSec’s Cloud Security expertise is its investment in continued ...
Start Reading
Mike Fuller9 min read

Customization and Automation in AWS Audit Manager

Customizing AWS Audit Manager Frameworks with the AWS CLI and API.
Start Reading
ScaleSec6 min read

Using AWS CloudFront and WAF with Serverless Applications

AWS CloudFront and WAF are great extensions for your serverless stack. Here are some best ...
Start Reading
Julianna DiPrima4 min read

2020 in Review

Entering 2021 after a year of growth, change, and teamwork.
Start Reading
ScaleSec7 min read

Your Guide to Google Cloud Function Identities

Trying to scope your Google Cloud Functions effectively? Here’s what you should know ...
Start Reading