LaunchRack

03/17/2022

- Is speed critical to you? Is security as important as your business logic?

Here are some simple steps you can take in the early stages to ensure you are following cloud security posture and avoid service disruption.

𝑨 𝒒𝒖𝒊𝒄𝒌 𝒈𝒍𝒊𝒎𝒑𝒔𝒆 𝒐𝒇 𝑨𝑾𝑺 𝒊𝒅𝒆𝒏𝒕𝒊𝒕𝒚 𝒎𝒂𝒏𝒂𝒈𝒆𝒎𝒆𝒏𝒕:
👉 IAM users are individuals who needs access to your AWS account
👉 IAM systems users are third party apps that needs access to perform functions such as CI/CD
👉 IAM roles are similar to IAM users except that a role is intended to be assumable by anyone who needs it ( For eg: a user can assume a role to get 👉 access to a staging account to test changes ). It is important to leverage IAM roles because a compromised users credentials can have greater impact.

𝑯𝒆𝒓𝒆 𝒂𝒓𝒆 𝒔𝒐𝒎𝒆 𝒃𝒆𝒔𝒕 𝒑𝒓𝒂𝒄𝒕𝒊𝒄𝒆𝒔 𝒕𝒉𝒂𝒕 𝒘𝒆 𝒓𝒆𝒄𝒐𝒎𝒎𝒆𝒏𝒅:
✅ Usage of strong password policies
✅ Regular credential rotation
✅ Follow least privilege principles
✅ Never share any access keys
✅ Use a secret store such as secrets manager or vault for system users
✅ Adopt Single Sign On for central identity management
✅ Run periodic scans on your codebase to make there are no hard-coded access credentials.

Lastly it is important that you audit user logins and use central logging to track all malicious attacks. Security is a shared responsibility and implementing these best practices early on can reduce the risk cyber attacks and enable you scale faster.

03/10/2022

High Growth 's should consider using a cloud managed service and make efforts in choosing a tech that has the ability to scale.

𝐂𝐨𝐧𝐬𝐢𝐝𝐞𝐫 𝐚𝐬𝐤𝐢𝐧𝐠 𝐲𝐨𝐮𝐫𝐬𝐞𝐥𝐟:
👉 How much time can you dedicate towards operationalization of your stack?
👉 What would be your cost to run your stack?
👉 What technologies and softwares will you need to support your stack?
👉 How soon can you release new feature?
👉 How robust is your future?
👉 Are you highly available to avoid service disruption?
👉 How portable is your application if you need to consider moving a different ?

➡️ Taking advantage of cloud managed services for various needs like container orchestration (AWS EKS/ECS), database replication (Amazon RDS Multi-AZ), compute/storage high availability (Autoscaling, EFS) can save you a lot of the heavy lifting and allow you to focus on your business value. Whether you use a managed service or roll your own custom set up, one should always consider a cloud-native approach.

03/08/2022

Why should you consider for infrastructure deployment? Check out this case study from Hashicorp that improved Decathlon's responsiveness to the market and ability to deliver new products - https://hashi.co/3ut89jR

Are you ready to operate in the cloud?
Contact us: https://launchrack.com/contact

Global leader in athletic apparel and gear wins big with 30-minute infrastructure deployment from HashiCorp Terraform.

02/01/2022

Companies like HSAT have cut their compute costs by 70% and reduce their data processing times by 80%, by moving their data processes to AWS - https://aws.amazon.com/solutions/case-studies/hsat/

Are you operating efficiently in the cloud?
Let our experts at help you with your cost optimization. Get in touch: https://launchrack.com/contact

Got a question? We'd love to talk about how we can help you

02/01/2022

What is pipelines-as-code? and why do we need it build, test, secure and deploy? Here is a great article from Gitlab that talks about the importance of "as-Code" technologies and how they have become the de-facto standard for cloud-native computing

Pipelines-as-Code streamline automatic building, testing, and deploying of applications using prebuilt pipelines and infrastructure components. Here's how it works.

01/15/2022

Did you check out the new Home in the AWS Management Console? You can now customize widgets like AWS Health, Cost and usage, etc., that aggregate data from multiple services and regions to perform various tasks.

If you are reading this blog, there is a high chance you frequently use the AWS Management Console. I taught AWS classes for years. During classes, students’ first hands-on experience with the AWS Cloud happened on the console, and I bet yours did too. Until today, the home page of the console sho...

01/08/2022

For developers who want to start using new AWS services and features, learn how you can leverage the Terraform AWS Cloud Control Provider to test new AWS features closer to their launch date.

This new provider for HashiCorp Terraform — built around the AWS Cloud Control API — is designed to bring new services to Terraform faster.

11/11/2021

Fintech's like Asian Development Bank (ADB) use cutting edge tools to innovate in the cloud. Checkout this post on how they leveraged Terraform to scale innovation without compromising security and resiliency.

Hear how the Asian Development Bank used Terraform Enterprise, Packer, Vault, and Sentinel to scale innovation without compromising security and resiliency.

11/11/2021

Are you using vault for your secrets management? Vault now lets you integrate its audit logs and metrics along with pre-built metrics dashboards, with observability platforms such as DataDog, Grafana and Splunk

New integrations with Datadog, Grafana Cloud, and Splunk offer pre-built dashboards for usage and performance monitoring in HCP Vault.

11/11/2021

Companies are better positioned to shift quickly and connect with consumers when they leverage Data Management techniques and Machine Learning. AWS Cloud technology has helped delivering great value to retail, travel and hospitality sectors by enhancing customer experience and operational efficiency.

How cloud technology helps retail and hospitality companies increase customer engagement and satisfaction.

10/26/2021

Need to keep a track of everything happening in your gitlab projects? Checkout GitDock, a desktop app that shows you information about activity on your projects and pipelines

Life is full of moving parts. We get it. And that's why we created GitDock so you can keep track of all things GitLab right from your desktop.

10/06/2021

Are you building your startup on AWS?
Check out the AWS Activate Founders for Self-Funded Startups.

AWS Activate Founders is a free program open to self-funded and bootstrapped startups that empowers you to innovate, build, and grow.