Tag: Organization Policies
-
Cloud Blog: Streamline auditing: Compliance Manager is now in preview
Source URL: https://cloud.google.com/blog/products/identity-security/streamline-auditing-compliance-manager-is-now-in-preview/ Source: Cloud Blog Title: Streamline auditing: Compliance Manager is now in preview Feedly Summary: As organizations increase their focus on security and regulatory compliance, Google Cloud is helping our customers meet these obligations by fostering better collaboration between security and compliance teams, and the wider organization they serve. To help simplify and…
-
Cloud Blog: Beyond guardrails: A taxonomy of platform engineering control mechanisms
Source URL: https://cloud.google.com/blog/products/application-modernization/platform-engineering-control-mechanisms/ Source: Cloud Blog Title: Beyond guardrails: A taxonomy of platform engineering control mechanisms Feedly Summary: The promise of platform engineering is to accelerate software delivery by empowering developers with self-service capabilities. However, this must be balanced with security, compliance, and operational stability, and for this, you need robust controls. But all too…
-
Cloud Blog: Just say no: Build defense in depth with IAM Deny and Org Policies
Source URL: https://cloud.google.com/blog/products/identity-security/just-say-no-build-defense-in-depth-with-iam-deny-and-org-policies/ Source: Cloud Blog Title: Just say no: Build defense in depth with IAM Deny and Org Policies Feedly Summary: In today’s cloud landscape, safeguarding your cloud environment requires bolstering your Identity and Access Management (IAM) approach with more than allow policies and the principle of least privilege. To bolster your defenses, we…
-
Cloud Blog: Google Cloud Serverless for Apache Spark: high-performance, unified with BigQuery
Source URL: https://cloud.google.com/blog/products/data-analytics/introducing-google-cloud-serverless-for-apache-spark-in-bigquery/ Source: Cloud Blog Title: Google Cloud Serverless for Apache Spark: high-performance, unified with BigQuery Feedly Summary: At Google Cloud, we’re committed to providing the most streamlined, powerful, and cost-effective production- and enterprise-ready serverless Spark experience. To that end, we’re thrilled to announce a significant evolution for Apache Spark on Google Cloud, with…
-
Cisco Talos Blog: Duping Cloud Functions: An emerging serverless attack vector
Source URL: https://blog.talosintelligence.com/duping-cloud-functions-an-emerging-serverless-attack-vector/ Source: Cisco Talos Blog Title: Duping Cloud Functions: An emerging serverless attack vector Feedly Summary: Cisco Talos built on Tenable’s discovery of a Google Cloud Platform vulnerability to uncover how attackers could exploit similar techniques across AWS and Azure. AI Summary and Description: Yes **Summary:** The provided text discusses a security vulnerability…
-
Cloud Blog: What’s new in IAM, Access Risk, and Cloud Governance
Source URL: https://cloud.google.com/blog/products/identity-security/whats-new-in-iam-access-risk-and-cloud-governance/ Source: Cloud Blog Title: What’s new in IAM, Access Risk, and Cloud Governance Feedly Summary: It’s a core part of our mission at Google Cloud to help you meet your evolving policy, compliance, and business objectives. To help further strengthen the security of your cloud environment, we continue regular delivery of new…
-
Cloud Blog: 5 ways Google Cloud can help you minimize credential theft risk
Source URL: https://cloud.google.com/blog/products/identity-security/5-ways-google-cloud-can-help-you-minimize-credential-theft-risk/ Source: Cloud Blog Title: 5 ways Google Cloud can help you minimize credential theft risk Feedly Summary: Threat actors who target cloud environments are increasingly focusing on exploiting compromised cloud identities. A compromise of human or non-human identities can lead to increased risks, including cloud resource abuse and sensitive data exfiltration. These…
-
Cloud Blog: Cloud CISO Perspectives: How cloud security can adapt to today’s ransomware threats
Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-how-cloud-security-can-adapt-ransomware-threats/ Source: Cloud Blog Title: Cloud CISO Perspectives: How cloud security can adapt to today’s ransomware threats Feedly Summary: Welcome to the second Cloud CISO Perspectives for January 2025. Iain Mulholland, senior director, Security Engineering, shares insights on the state of ransomware in the cloud from our new Threat Horizons Report. The research…
-
Cloud Blog: Using custom Org Policies to enforce the CIS benchmark for GKE
Source URL: https://cloud.google.com/blog/products/identity-security/how-to-use-custom-org-policies-to-enforce-cis-benchmark-for-gke/ Source: Cloud Blog Title: Using custom Org Policies to enforce the CIS benchmark for GKE Feedly Summary: As the adoption of container workloads increases, so does the need to establish and maintain a consistent, strong Kubernetes security posture. Failing to do so can have significant consequences for the risk posture of an…