The early days of cloud were like the wild west – developers spun up test environments and created solutions on the fly to solve their problems. Eventually, as the center of mass and more business-critical applications shifted to cloud, IT and enterprise controls followed. Today, we’re seeing Kubernetes follow the same trajectory. In 2022,…
When Microsoft Azure last year announced that support for default access to the internet is ending for new virtual machines (VMs) after September 30, 2025, it sparked some excellent discussions around outbound/inbound internet access that I believe will ultimately help organizations become more secure. Coming to the table as a former Azure Global Black…
Aviatrix provides several mechanisms to enforce network security policy. This is the first in a series of articles about network security policy enforcement mechanisms in the Aviatrix platform. In this article we describe the path from network security policy intent to enforcement. Figure 1 provides an overview of this path. Figure 1: Steps to…
The adoption of cloud architecture is gaining momentum as businesses seek enhanced scalability, flexibility, and efficiency. However, this transition is not without its challenges. I recently authored a series of articles on Dataversity that delves into five critical cloud architecture mistakes that can impede a seamless migration journey. These include: 1. Losing…
In this third chapter of my “Ticking Time Bomb” series, I’d like to explore how existing approaches to cloud security create problems with an emerging but important security discipline called DevSecOps. If you’d like get caught up, you can check out my first chapters on cost challenges here and scale challenges here. There will be…