Security Insights

Write

Secrets in Public Repos: A Wake-Up Call for All of Us
A recent contractor incident reminds us that even the most security-conscious organizations are only as strong as their weakest configuration. Here's what every CISO, developer, and security leader sh
May 19, 20266 min read
Navigating AI Governance: A Complete, Practical Guide
This guide takes you from foundational concepts to actionable strategies for thriving in an AI-driven world.
Jan 11, 20267 min read
S
Security Insights
20 posts
Hi 👋 I'm Niranjan Ganesan, cybersecurity leader w/20+ yrs: cloud security, compliance (SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS), AI governance (ISO 42001). Automate processes, fast-track certs. 🚀
Simplify and Secure Your Amazon Bedrock API Access with Short-Term Keys
Amazon Bedrock is revolutionizing how developers build generative AI applications by providing easy access to powerful foundation models. To interact with these models via the Amazon Bedrock API, you need to authenticate using API keys. Amazon Bedroc...
Jul 15, 20256 min read
AWS Bottlerocket: Reinventing Container Security and Efficiency for Modern Workloads
AWS Bottlerocket represents a transformative approach to operating system design, engineered specifically to address the security, scalability, and operational demands of containerized environments. By reimagining traditional OS architectures, Bottle...
Feb 20, 20255 min read
Leveraging Steampipe and the AWS Plugin for Security and Compliance
In today’s cloud-first environment, ensuring your AWS infrastructure is secure and compliant is more critical than ever. Manual audits simply can’t keep pace with the rapid growth and complexity of cloud resources. Steampipe—an open-source tool that ...
Feb 2, 20256 min read
Beware the New Cyber Scam Involving “Free” or Discounted Phones and SIM Cards
Cybercriminals are always inventing new ways to deceive unsuspecting individuals. A recent wave of fraud involves victims receiving a phone that appears free or heavily discounted—but is actually pre-loaded with malicious software. In many cases, sca...
Jan 27, 20255 min read
Managing CVE Data Locally with CVE Database Manager
Introduction In the cybersecurity landscape, keeping track of vulnerabilities is crucial for maintaining secure systems. The Common Vulnerabilities and Exposures (CVE) list is a comprehensive catalog of such vulnerabilities. However, using public API...
Aug 4, 20243 min read
The Ripple Effect of CrowdStrike's Update: Industry Perspectives and Future Safeguards
Introduction: Understanding the Scale and Impact I want to make it clear that I am not trying to criticize or undermine CrowdStrike as a company. I genuinely appreciate their cybersecurity products and their significant contributions to the security ...
Jul 28, 20247 min read
Security Best Practices for Amazon EC2
Only use encrypted EBS volumes. Encrypt your data, snapshots, and disk I/O using the AWS KMS AES-256 algorithm. Activate your VPC Flow Logs. Collect IP traffic from and to the network interfaces in your VPCs for further analysis. Protect your EC2 Key...
Feb 24, 20243 min read

Command Palette

Latest articles