AWS

This post was co-authored by Teddy Ferdinand. Who is working as Cloud Security Architect 🐻 Introduction In this series, we will talk about the emergence of the DevSecOps movement, and more especially, what are the benefits of introducing a DevSecOps approach on your existing CI/CD Pipelines. CI/CD Pipeline To give you some context, you will find in the diagram below a standard DevOps CI/CD Pipeline. DevSecWhat? DevSecOps could be defined as a shift from a central internal security team to the inclusion of security practices into the existing DevOps teams: DevSecOps 🎉 ...

This post is the second part of a series about my journey as an Independent AWS Cloud Architect. Status As I’ve already told you in the first part, I’ve started my own business in early January 2020. After the first 6 months of being an Independent AWS Architect in France, I’m very happy with this move, no regret, and I won’t see any upcoming U-turn move to come back as a full-time employee. ...

Hi Folks, Lately, I was experimenting with GitHub Actions (GHA), as it is a buzzword since General Availability (GA), but I didn’t take time to try it before. I’ve done it for you folks. 🙌 Context GHA was released on GA in November 2019, the main features are: Automate development workflows (CI/CD): build, test, deploy Hosted runners / self-hosted runners Automate the management of your GH Community: PR, Code Reviews, or Issue Tracking Built-in secrets store ...

This Article was created posted in September 2019. Updated in February 2020. Disclaimer Thanks to @0xdabbad00 from SummitRoute for the original idea and jq parsing. Purpose When your production workloads rely on AWS IAM Managed Policies (don’t do this), you will need to be notified when changes occur behind the scene. It’s also interesting to monitor new AWS services releases prior announcements to get spoiled. This pet project automates the retrieval (every 4 hours) of new AWS Managed IAM Policies to make it easier to monitor and get alerted when changes occur (by AWS) using “Watch” feature from Github, RSS or dedicated Twitter Account. ...

Quick post today about CostSaving on AWS. As you know two of my preferred subjects on Public Cloud are: Security and FinOps ! Recently, AWS introduced a way to reduce by up to 70% AWS bills using Spot instances with AWS Fargate service. It’s really easy to use, and if your workload is interruption-proof, batch jobs, or CI/CD containers, don’t hesitate to use it to drastically reduce your workloads costs. Using Terraform, you just have to specify the capacity_providers and/or the default_capacity_provider_strategy on your aws_ecs_cluster resource. ...