Profile

Allan Black

This user account status is Approved

Comments Comments

I appreciate the blog post. It was very helpful.

On Understanding that third-party security products are available from AWS Marketplace

Can TLS 1.2 and TLS 1.3 both be enabled on the same AWS endpoint?

On TLS concepts

Thanks for this tutorial. It cleared up many of my doubts regarding model evaluation!

On Monitor performance of the model.

This blog post is rather confusing. More diagrams would help.

On Implementing network segmentation based on security requirements (for example, public subnets, private subnets, sensitive VPCs, on-premises connectivity)

Thanks for the post! Do you have any example scenarios where ASFF can be practically applied?

On AWS Security Finding Format (ASFF)

Does anyone have tips on integrating Sentry with AWS services for monitoring and error tracking?

On Using processes and components for centralized monitoring to proactively recover from system failures

I have. VPC Flow Logs capture detailed IP traffic data, and it's more granular compared to CloudFront or ELB logs.

On Access logging (for example, load balancers, CloudFront)

I'm currently studying for DOP-C02, and this blog post really helps clarify things!

On Anomaly detection alarms (for example, CloudWatch anomaly detection)

Defending in depth using AWS security services is effective but can be pricey.

On Combining security controls to apply defense in depth (for example, AWS Certificate Manager [ACM], AWS WAF, AWS Config, AWS Config rules, Security Hub, GuardDuty, security groups, network ACLs, Amazon Detective, Network Firewall)

I think the cost can be a bit prohibitive for smaller companies.

On Mapping or understanding network topology (for example, Transit Gateway Network Manager)

load more comments