all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Powerful Cloud Permissions You Should Know: Part 1

Add to bookmarks
c
March 25, 2024, 7:32 p.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by Sonrai Security.Written by Deirdre Hennigar and Tally Shea.MITRE ATT&CK Framework: Initial AccessA cloud permission is never a dangerous thing by nature. In fact, their power is solely defined by the context in which they are used. Whether a permission falls into the wrong hands for malicious use, or an employee uses it and unintentionally introduces new risk, cloud permissions can be powerful tools.Some permissions inherently hold more power than others and should...

amp att cloud context defined fact framework malicious mitre mitre att&amp nature permission permissions power security sonrai sonrai security written wrong

Visit resource

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl
CSA Community Spotlight: Leading Critical Discussions with Vishwas Manral 4 days, 7 hours ago | cloudsecurityalliance.org
anniversary array assurance authority +19
Cl
From the Trenches: A CISO's Guide to Threat Intelligence 6 days, 14 hours ago | cloudsecurityalliance.org
attack ben ciso cisos +13
Cl
5 ChatGPT Jailbreak Prompts Being Used by Cybercriminals 6 days, 14 hours ago | cloudsecurityalliance.org
abnormal abnormal security attacks chatgpt +18
Cl
What We Know About Vulnerability Exploitation in 2024 (So Far) 1 week ago | cloudsecurityalliance.org
change cves exploitation exploits +14
Cl
SASE and Zero Trust PAM: Why Enterprises Need Both 1 week ago | cloudsecurityalliance.org
advanced awareness compliance controls +24
Cl
Risk Management in the Age of Artificial Intelligence: 9 Questions to Ask Your AI-Powered Vendors 1 week ago | cloudsecurityalliance.org
advisory age ai-powered artificial +20
Cl
5 Best Practices to Secure AWS Resources 1 week, 4 days ago | cloudsecurityalliance.org
amazon amazon web services aws best practices +22
Cl
Mastering Zero Trust Security in IT Operations 1 week, 4 days ago | cloudsecurityalliance.org
automox can cyber cybersecurity +16
Cl
Beyond Blind Trust: The Imperative of Zero Trust for Federal Agencies 1 week, 4 days ago | cloudsecurityalliance.org
architectures beyond blind continuous +23

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Security Compliance Manager

@ Aptiv | USA Boston Software Office 100 Northern - Eng
View on infosec-jobs.com

Senior Radar Threat Analyst | Secret clearance

@ Northern Trust | USA CA Point Mugu - 575 I Ave, Bldg 3015 (CAC212)
View on infosec-jobs.com

Space Information Systems Security Engineer (ISSE)

@ Parsons Corporation | USA VA Chantilly (Client Site)
View on infosec-jobs.com

Information Systems Security Manager -Journeyman

@ Parsons Corporation | USA CO Colorado Springs (5450 Tech Center Drive)
View on infosec-jobs.com

Information Systems Security Officer (ISSO) II

@ Northern Trust | USA CA Riverside - Customer Proprietary (CAC225)
View on infosec-jobs.com