The early days of cloud were like the wild west – developers spun up test environments and created solutions on the fly to solve their problems. Eventually, as the center of mass and more business-critical applications shifted to cloud, IT and enterprise controls followed. Today, we’re seeing Kubernetes follow the same trajectory. In 2022,…
Category Archives: Security
-
How to Handle the 2025 Change to Azure VM Internet Access
When Microsoft Azure last year announced that support for default access to the internet is ending for new virtual machines (VMs) after September 30, 2025, it sparked some excellent discussions around outbound/inbound internet access that I believe will ultimately help organizations become more secure. Coming to the table as a former Azure Global Black…
-
Network Security Policy to Enforcement with Aviatrix
Aviatrix provides several mechanisms to enforce network security policy. This is the first in a series of articles about network security policy enforcement mechanisms in the Aviatrix platform. In this article we describe the path from network security policy intent to enforcement. Figure 1 provides an overview of this path. Figure 1: Steps to…
-
Is Your Cloud Network a Ticking Time Bomb? Part 3: Agility in the World of DevSecOps
In this third chapter of my “Ticking Time Bomb” series, I’d like to explore how existing approaches to cloud security create problems with an emerging but important security discipline called DevSecOps. If you’d like get caught up, you can check out my first chapters on cost challenges here and scale challenges here. There will be…