Lmst
Login

#cwpp

jj the Santa Barbariancookiesinheaven@m.ai6yr.org
2025-02-16

via SBCFireInfo ๐Ÿฆ

Public Input Needed: Draft CWPP & Transportation Study

The #SantaBarbara County Fire Department is seeking public input on the Community Wildfire Protection Plan (CWPP) and Transportation Study for the Santa Barbara Foothill Communities. The Draft CWPP is now available for public review until March 11, 2025.

๐Ÿ”น Public Review Period: February 11 โ€“ March 11, 2025
๐Ÿ”น Virtual Public Meeting: Thursday, February 27, 2025 | 6:00 โ€“ 7:30 PM | Register Here

Your feedback is crucial in shaping wildfire preparedness and community safety. Review the draft plan and register for the public meeting at: ims.dudek.com/sbfoothillscwpp

#SBCFire #WildfirePreparedness
#CWPP

Jack Pollerpoller@infosec.exchange
2024-12-02

calcalistech.com/ctechnews/art

#security #cybersecurity #cloudsecurity #funding #CSPM #CWPP #APISecurity #VulnerabilityManagement #Vulnerability #identitysecurity #ContainerSecurity
4/4

F0rm4tF0rm4t@infosec.exchange
2024-01-30

๐Œ๐š๐ฉ ๐‚๐จ๐ง๐ญ๐š๐ข๐ง๐ž๐ซ ๐ˆ๐ฆ๐š๐ ๐ž๐ฌ ๐Ÿ๐ซ๐จ๐ฆ ๐‚๐จ๐๐ž ๐ญ๐จ ๐‚๐ฅ๐จ๐ฎ๐ ๐ฐ๐ข๐ญ๐ก ๐ƒ๐ž๐Ÿ๐ž๐ง๐๐ž๐ซ ๐Ÿ๐จ๐ซ ๐‚๐ฅ๐จ๐ฎ๐

When a vulnerability is identified in a container image stored in a container registry or running in a Kubernetes cluster, it can be difficult for a security practitioner to trace back to the CI/CD pipeline that first built the container image and identify a developer remediation owner.

With DevOps security capabilities in Microsoft Defender Cloud Security Posture Management (CSPM), you can map your cloud-native applications from code to cloud to easily kick off developer remediation workflows and reduce the time to remediation of vulnerabilities in your container images.

techcommunity.microsoft.com/t5

Details: learn.microsoft.com/en-us/azur

#defender #cspm #CloudSecurityPostureManagement #devops #pipeline #codetocloud #container #vulnerabilities #Kubernetes #cnapp #cwpp #cloudnative #cloudsecurity #soc #microsoft #microsoftsecurity #azure #multicoud

F0rm4tF0rm4t@infosec.exchange
2024-01-08

๐ˆ๐ง๐ญ๐ซ๐จ๐๐ฎ๐œ๐ข๐ง๐  ๐Œ๐ข๐œ๐ซ๐จ๐ฌ๐จ๐Ÿ๐ญ ๐ƒ๐ž๐Ÿ๐ž๐ง๐๐ž๐ซ ๐Ÿ๐จ๐ซ ๐‚๐ฅ๐จ๐ฎ๐ ๐‹๐š๐›๐ฌ

Our labs project help you get ramped up with Microsoft Defender for Cloud and provide hands-on practical experience for product features, capabilities, and scenarios. The labs are divided into 3 main tracks, a beginner (level 100/200) and an advanced (level 300+) track. The labs contain several modules cover different pillars such as Cloud Security Posture Management (CSPM) to Cloud Workload Protection (CWP). To start using our labs, you will need to create Azure Trial Subscription which provides you all capabilities for 30 days โ€“ so you have to finish this lab at this point to take advantage of the free trial.

github.com/Azure/Microsoft-Def

#defender #defenderforcloud #cnapp #cspm #cwp #cwpp #cloudsecurity #multicloud #azure #aws #gcp #microsoft #microsoftsecurity #soc #server #container #storage #dns #api #devops #database #api #github #arc #agentless #storageaccount #mde #vulnerability #mdvm #siem

FoWFoW@netsphere.one
2023-12-12

VMware Carbon Black: ๊ธฐ๋Šฅ ๋ฐ ๊ทœ๊ฒฉ
NGAV ๋ฐ EDR ํ™œ์šฉํ•œ ์ •๋ณด๋ณด์•ˆ ์—…๋ฌด์— ์ฐธ๊ณ ํ•  ์ˆ˜ ์žˆ๋„๋ก ๊ทœ๊ฒฉ์„œ ์ •๋ฆฌ๋˜์–ด ์žˆ์Šต๋‹ˆ๋‹ค.
์†”๋ฃจ์…˜ ๋„์ž… ๊ฒ€ํ† ์— ์ฐธ๊ณ ํ•˜์‹ค ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.
- bs.etevers.tech/books/carbon-b

#VMware #CarbonBlack #CWPP #containersecurity #infosec #์ •๋ณด๋ณด์•ˆ

Jason Mashak ๐Ÿ•Š๏ธjasonmashak@infosec.exchange
2023-07-18

Steps Forward: Can โ€˜CNAPPโ€™ solutions truly unify cloud, on-premises best cybersecurity practices?

Byron Acohido hosts a #CNAPP conversation with #Runecast, Data Theorem, Palo Alto Networks, and #Gartner.

#CSPM #CWPP
lastwatchdog.com/steps-forward

F0rm4tF0rm4t@infosec.exchange
2023-06-19

๐—›๐—ผ๐˜„ ๐˜๐—ผ ๐˜€๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ฒ ๐—ฎ ๐—™๐˜‚๐—ป๐—ฐ๐˜๐—ถ๐—ผ๐—ป ๐—”๐—ฝ๐—ฝ?

๐š‚ฬฒ๐šŽฬฒ๐šŒฬฒ๐šžฬฒ๐š›ฬฒ๐šŽฬฒโ€‚ฬฒ๐š˜ฬฒ๐š™ฬฒ๐šŽฬฒ๐š›ฬฒ๐šŠฬฒ๐šฬฒ๐š’ฬฒ๐š˜ฬฒ๐š—ฬฒ

โžก๏ธDefender for Cloud for assessment of potential configuration-related security vulnerabilities

โžก๏ธLog and monitor: diagnostic settings to configure streaming export of platform logs and metrics

โžก๏ธRequire HTTPS

โžก๏ธSecuring keys with Azure key Vault

โžก๏ธEnable App Service Authentication/Authorization

โžก๏ธUse Azure API Management (APIM) to authenticate requests

โžก๏ธRun your function app with the lowest possible permissions

โžก๏ธStore data encrypted

๐š‚ฬฒ๐šŽฬฒ๐šŒฬฒ๐šžฬฒ๐š›ฬฒ๐šŽฬฒโ€‚ฬฒ๐šฬฒ๐šŽฬฒ๐š™ฬฒ๐š•ฬฒ๐š˜ฬฒ๐šขฬฒ๐š–ฬฒ๐šŽฬฒ๐š—ฬฒ๐šฬฒ

โžก๏ธDisable FTP

โžก๏ธSecure the scm endpoint

๐™ฝฬฒ๐šŽฬฒ๐šฬฒ๐š ฬฒ๐š˜ฬฒ๐š›ฬฒ๐š”ฬฒโ€‚ฬฒ๐šœฬฒ๐šŽฬฒ๐šŒฬฒ๐šžฬฒ๐š›ฬฒ๐š’ฬฒ๐šฬฒ๐šขฬฒ

โžก๏ธSet access restrictions

โžก๏ธSecure the storage account

โžก๏ธPrivate site access with Azure Private Endpoint

โžก๏ธDeploy your function app in isolation configuring a Web Application Firewall (WAF) for App Service Environment.

More details: learn.microsoft.com/en-us/azur

#security #azure #cloud #data #management #streaming #functionapp #serverless #waf #appservice #privateendpoint #networksecurity #securedeployment #apim #ftp #keyvault #key #vulnerability #assessment #misconfiguration #encryption #storage #storageaccount #defender #defenderforcloud #cnapp #cspm #cwpp #microsoft #microsoftsecurity #cloudsecurity #cloudnative #siem #monitoring #soc

Terre Logsdonterreal@spore.social
2023-06-17

Was really cool today to add #WatchDuty to our #CWPP draft today. Srsly

F0rm4tF0rm4t@infosec.exchange
2023-05-22

What's new in Microsoft Defender for Cloud?

Updates in May include:

โžก๏ธNew alert in Defender for Key Vault

โžก๏ธAgentless scanning now supports encrypted disks in AWS

โžก๏ธRevised JIT (Just-In-Time) rule naming conventions in Defender for Cloud

โžก๏ธOnboard selected AWS regions

โžก๏ธMultiple changes to identity recommendations

โžก๏ธDeprecation of legacy standards in compliance dashboard

โžก๏ธTwo Defender for DevOps recommendations now include Azure DevOps scan findings

โžก๏ธNew default setting for Defender for Servers vulnerability assessment solution

More details: learn.microsoft.com/en-us/azur

#microsoft #azure #devops #cloud #aws #compliance #gcp #defender #defenderforcloud #cnapp #cspm #cwpp #soc #cloudsecurity #multicloud #securityplatform #microsoftsecurity

Paul Reynolds :verified:ren@infosec.exchange
2023-03-13

Protecting Cloud Workloads: The Role of CSPM and CWPP.

Or CSPM vs CWPP

blackchili.co.uk/cspm-and-cwpp

#cloudsecurity #cspm #cwpp #securitypolicy #securitypolicies #Automation

Jason Mashak ๐Ÿ•Š๏ธjasonmashak@infosec.exchange
2023-02-17

I am very much looking forward to this discussion, as I typically take advantage of any opportunity that I have to talk with either of these guys, so having both together is a big treat. ๐Ÿ˜Ž ๐ŸŽฌ ๐Ÿ‘๐Ÿฝ

#CNAPP #CSPM #CWPP #CloudSecurity

runecast.com/register-now/how-

์šฐ์ญˆ์ญˆdangdang@muri.network
2023-02-06

CWPP ๊ฐœ๋…

#CWPP #Gartner #Carbonblack #์ •๋ณด๋ณด์•ˆ

seungminblog.tistory.com/entry

JasonMashakjasonmashak@indieweb.social
2023-02-01

New #CNAPP Buyerโ€™s Guide

runecast.com/download/ebook-cn

#cspm #cwpp #cloudsecurity

F0rm4tF0rm4t@infosec.exchange
2023-01-25

With this blog, we are focusing on deployment and integration of Microsoft Defender for Endpoint with Microsoft Defender for Servers on Linux machines

techcommunity.microsoft.com/t5

#microsoft #linux #defender #xdr #edr #cspm #CWPP #cloud #multicloud #cybersecurity #azure

JasonMashakjasonmashak@indieweb.social
2023-01-05

#Runecast ranks โ€˜High Performerโ€™ with โ€˜Best Supportโ€™ across all quarterly 2022 G2 Gridยฎ Reports

#CNAPP #CWPP #CSPM #KSPM #VMware #AWS #Azure #GCP #Kubernetes #K8s #Windows #Linux #automation #CISO #CIO #ITsecurity #compliance
ciodive.com/press-release/2023

MmiguelHzBz
2021-12-09

๐ŸฒGetting caught up in the alphabet soup of โ˜cloud security๐Ÿฒ? , , , and ๐Ÿฅข. We'll review the different types of solutions๐Ÿงช, their uses, pros/consโš–, and more so you can determine what the best approach is for you๐Ÿ—บ! ๐Ÿ‘€Read more: sysdig.com/blog/cnapp-cloud-se

ITSEC Newsitsecbot@schleuss.online
2019-09-30

Application News โ€“ ASW #78 - Application News
The post Application News โ€“ ASW #78 appeared first on Security Weekly. more: feedproxy.google.com/~r/securi #applicationsecurityweekly #cloudworkloadprotection #vulnerabilities #cloudsecurity #cloudsecurity #mattalderman #devsecops #mikeshema #exploits #software #threats #devops #azure #cloud #news #cwpp #aws #gcp

ITSEC Newsitsecbot@schleuss.online
2019-09-18

Attacking AWS: Elastic Map to Reduce Clusters โ€“ ESW #154 - Attacking AWS: Elastic Map to Reduce Clusters
The post Attacking AWS: Elastic Map to Reduce Clusters... more: feedproxy.google.com/~r/securi #enterprisesecurityweekly #cloudworkloadprotection #cloudconfiguration #vulnerabilities #paulasadoorian #cloudsecurity #cloudsecurity #mattalderman #compliance #johnstrand #devsecops #exploits #software #threats #devops #policy #topic #azure #cloud #cwpp

ITSEC Newsitsecbot@schleuss.online
2019-09-18

Cloud Security โ€“ ESW #154 - Cloud Security
The post Cloud Security โ€“ ESW #154 appeared first on Security Weekly. more: feedproxy.google.com/~r/securi #enterprisesecurityweekly #cloudworkloadprotection #cloudconfiguration #vulnerabilities #paulasadoorian #cloudsecurity #cloudsecurity #mattalderman #compliance #devsecops #exploits #software #threats #devops #policy #topic #azure #cloud #cwpp #aws #gcp

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst