Leaving unused roles in your AWS environment can cause real trouble. Cloudrail can identify unused roles managed by your Terraform code and alert you within CI.

Cloudrail allows users of IaC to use AWS’s new policy validation capabilities within the CI/CD pipeline, without any additional work.

Cloudrail allows users of IaC to use AWS’s new policy validation capabilities within the CI/CD pipeline, without any additional work.

Learn how to use IaC security tools to build secure S3 buckets from the get-go, instead of fixing them after they’re in production.

Cloudrail allows users of IaC to use AWS’s new policy validation capabilities within the CI/CD pipeline, without any additional work.

The AWS Well-Architected Framework includes some of the best practices for cloud architects to follow. Following these best practices is a way to ensure that… Read More

So, your team, or even possibly your entire organization, has decided to standardize on using infrastructure-as-code to define IAM entities within cloud environments. For example,… Read More

Check Point Device Hardening  Device hardening is a necessary step to ensure your security devices do not have any potential loopholes which can be exploited… Read More

A lot has been written about the potential for privilege escalation in AWS, due to the use of permissive IAM permissions. These permissions, which may… Read More

Organizations want to create different policies for different accounts. For example, you have a baseline security policy that is the minimum set of requirements acceptable… Read More

In today’s competitive market, our success depends on how quickly we can innovate and deliver value to customers. It’s all about speeding time to market… Read More

Improving DevSecOps Collaboration By Automating IaC Analysis  You are running towards the finish line as quickly as possible to release your new product but unfortunately,… Read More

With the introduction of cloud we saw a major shift in enterprise perimeters. The traditional approach to defend a network was to set up perimeter… Read More

Executive Summary This is the story of Indeni’s transition to cloud-native development and cloud modernization efforts with security being a key focus. By dogfooding Cloudrail,… Read More

In this blog post, we compare the results of Indeni Cloudrail with other leading IaC security tools, such as Checkov and tfsec, and show how Cloudrail reduces the noise by 3x.

With infrastructure as code (IaC), you can treat infrastructure like code and apply the same software development practices and processes to your cloud environments as… Read More

Guardrails are designed to keep developers from unintentionally creating security issues in the cloud. Developers often move very quickly and are constantly under pressure to… Read More

Shift left security means integrating security into your development process as early as possible.  In the last blog post, we discussed the many benefits of… Read More