Homepage
Open in app
Sign in
Get started
Cloud Security
Cybersecurity in a Cloudy World
Cybersecurity for Executives
Woman in Cyber
Cloud Pentesting
Cloud Security Engineering
Cloud Breaches
Connecting to Clouds
Cybersecurity Books
2nd Sight Lab
Follow
Automate Creation of a VPC
Automate Creation of a VPC
ACM.60 Creating a VPC with a CloudFormation template
Teri Radichel
Sep 24
Adding a KMS Key Id to AWS SSM Parameter Store
Adding a KMS Key Id to AWS SSM Parameter Store
ACM.59 Encrypting our batch job session parameter with a key that a batch job can use to obtain session credentials
Teri Radichel
Sep 23
Using AWS Systems Manager Parameter Store with AWS Lambda
Using AWS Systems Manager Parameter Store with AWS Lambda
ACM.58 Creating a parameter to store our batch job session
Teri Radichel
Sep 22
Validating Input Parameters in A Lambda Function
Validating Input Parameters in A Lambda Function
ACM.57 How to prevent all manner of injection attacks in a Lambda function and other types of system components
Teri Radichel
Sep 21
Is Someone Sabotaging your Blog?
Is Someone Sabotaging your Blog?
Find out how to find it and report plagiarism to Google’s legal team
Teri Radichel
Sep 20
Parameters in Lambda Functions that lead to XSS and Injection
Parameters in Lambda Functions that lead to XSS and Injection
ACM.56 How I might abuse your Lambda function on a pentest if you don’t properly secure your inputs
Teri Radichel
Sep 20
Using Python and Boto3 in AWS
Using Python and Boto3 in AWS
ACM.55 Boto3 in a Lambda Function and later in AWS Batch
Teri Radichel
Sep 19
Lambda Networking
Lambda Networking
ACM.50 Considering when to apply or not apply VPC networking to a Lambda function
Teri Radichel
Sep 14
gvt2 domain connecting to Japan, Europe, Brazil…
gvt2 domain connecting to Japan, Europe, Brazil…
Curious about some activity reported by my monitoring systems
Teri Radichel
Sep 1
Cloud Network Architecture and Naming Conventions
Cloud Network Architecture and Naming Conventions
ACM.41 Resources that span applications, projects, and departments
Teri Radichel
Sep 4
Security Architecture is Not A Checklist
Security Architecture is Not A Checklist
ACM.14 Think like an attacker and architect accordingly
Teri Radichel
Jul 30
Creating Zero Trust AWS Policies
Creating Zero Trust AWS Policies
ACM.36: Tools and techniques to create zero trust resource, IAM, and Trust policies on AWS (Zero Trust Policies ~ Part 1)
Teri Radichel
Aug 21
Automating a Lambda Function Deployment
Automating a Lambda Function Deployment
ACM.52 Creating a Lambda function to generate a Job ID
Teri Radichel
Sep 16
Automating Cybersecurity Metrics (ACM)
Automating Cybersecurity Metrics (ACM)
A series of blog posts on cybersecurity metrics and security automation
Teri Radichel
Jul 27
Cloud Security Architecture — Batch Jobs
Cloud Security Architecture — Batch Jobs
ACM.49 Cloud security and application architecture for running batch jobs
Teri Radichel
Sep 13
AWS Resources Organization and Naming Conventions
AWS Resources Organization and Naming Conventions
ACM.40 Organizing AWS resources to find resources, reduce errors, plan for growth, and handle security incidents more efficiently
Teri Radichel
Sep 3
Resource, IAM, and Trust Policies on AWS
Resource, IAM, and Trust Policies on AWS
ACM.24 Architecting defense in depth AWS policies.
Teri Radichel
Aug 9
AWS Lambda and Batch jobs for Steps in a Process
AWS Lambda and Batch jobs for Steps in a Process
ACM.39 Serverless components to construct secure architectures
Teri Radichel
Aug 24
Assigning a Group to a Trust Policy in an AWS IAM Role
Assigning a Group to a Trust Policy in an AWS IAM Role
ACM.45 How to assign a group to a trust policy indirectly to overcome AWS limitations
Teri Radichel
Sep 8
Creating Automation Credentials Without Exposing Them To Users
Creating Automation Credentials Without Exposing Them To Users
ACM.35: Creating Secrets in AWS Secrets Manager with CloudFormation
Teri Radichel
Aug 20
Evaluating Printer Security Features
Evaluating Printer Security Features
Limiting attack vectors and blast radius of a printer compromise
Teri Radichel
Aug 25
Which Programming Language Should You Use?
Which Programming Language Should You Use?
ACM.53 Choosing a programming language for short term and long term projects
Teri Radichel
Sep 17
The right cybersecurity training
The right cybersecurity training
Teach your team to make decisions that prevent data breaches
Teri Radichel
Sep 25, 2019
Confused Deputy Attack in IAM, Resource, and AssumeRole Policies
Confused Deputy Attack in IAM, Resource, and AssumeRole Policies
ACM.31: Considering how an attacker could abuse role templates
Teri Radichel
Aug 16
Sending an SMS Message from a Lambda Function
Sending an SMS Message from a Lambda Function
ACM.54 Getting a phone number from Pinpoint
Teri Radichel
Sep 18
Modifying A Role CloudFormation Template to Pass in an ARN to Assume the Role
Modifying A Role CloudFormation Template to Pass in an ARN to Assume the Role
ACM.30 Allowing an IAM admin to run IAM-related batch jobs
Teri Radichel
Aug 15
Conditions and Mappings in CloudFormation Templates
Conditions and Mappings in CloudFormation Templates
ACM.32 Preventing the Confused Deputy Attack in Batch Job Roles
Teri Radichel
Aug 17
Security & Machine Learning — Part 2
Security & Machine Learning — Part 2
Applying ML to autonomous cars and security problems
Teri Radichel
Oct 4, 2020
Cybersecurity Author, Teri Radichel
Cybersecurity Author, Teri Radichel
Publications and Presentations by Teri Radichel
Teri Radichel
Feb 18, 2021
Amazon DocumentDB Network Access — Why the VPC?
Amazon DocumentDB Network Access — Why the VPC?
Billions of Reasons why networking is vital for cloud security courtesy of MongoDB
Teri Radichel
Sep 1, 2019
SASE: Secure Access Service Edge
SASE: Secure Access Service Edge
Distributed security architectures in the cloud.
Teri Radichel
Oct 26, 2020
Should We Apply Statistics to Cybersecurity Risk Decisions?
Should We Apply Statistics to Cybersecurity Risk Decisions?
Considering different methods of risk analysis and decision-making
Teri Radichel
Jul 20
About Cloud Security
Latest Stories
Archive
About Medium
Terms
Privacy
