Clouds : Shared responsibility model

In doesn’t make difference which cloud vendor you have chosen as the platform. All of them follow the shared responsibility model. What does it mean? It means the cloud provider has the security responsibility of the cloud and cloud customer has the security responsibility in the cloud. Azure AWS GCP IBM Shared responsibility model SharedContinue reading “Clouds : Shared responsibility model”

Onboarding : Azure API Performance and secure backend

Topices Key concepts API Management Components Improve performance by API Management caching Configure caching policy in API Management Caching possibilities Authentication possibilities Expose multiple Azure Function apps as a consistent Azure Front Door Related topices Key concepts Azure API Management API API definition API Gateway (APIM component) Accepts API calls and routes them to the backend.Continue reading “Onboarding : Azure API Performance and secure backend”

Onboarding : Azure Management Features

Topics Key concepts Azure scopes Policies Role-based access control (RBAC) Key concepts Azure AD Group Policy Role-based access control Azure scopes Azure provides four level of management Level 1 : Management Groups Level 2: Subscriptions Level 3: Resource Groups Level 4 : Resources Note: lower level inherts setting from the higher level. Apply the criticalContinue reading “Onboarding : Azure Management Features”

Onboarding : Azure Compute

Topics Keywords Manage VM Availability Set Scale Set Snapshot Image Deploy VM from VHD Generalize a server Azure Batch Automate business processes Related topics Onboarding : Azure Management Features Onboarding : Azure Secure Services Onboarding : Azure Infrastructure deployment Onboarding : Modern Applications Keywords Virtual Machine (VM) CLI VM Availability Set Scale Set Snapshot (from disk) Image (from vm)Continue reading “Onboarding : Azure Compute”

AWS : Monitor, React, and Recover

Topics Key concepts Monitoring concept CloudWatch How to use CloudWatch CloudWatch Alert Recovering From Failure by using CloudTrail  Automating recovery Chaos engineering Edge cases Related topics AWS : Virtual Private Network (VPC) AWS : Infrastructure Deployment AWS : Business Objectives AWS : DynamoDB AWS : Resiliency AWS : Serverless Key concepts Monitoring : is for understanding what isContinue reading “AWS : Monitor, React, and Recover”

AWS : Infrastructure Deployment

Topics Key concepts CloudFormation Key concepts CloudFormation Automation: The use of software to create repeatable instructions and processes to replace or reduce human interaction with IT systems Cloud Governance: The people, process, and technology associated with your cloud infrastructure, security, and operations. It involves a framework with a set of policies and standard practices InfrastructureContinue reading “AWS : Infrastructure Deployment”

Onboarding : Azure Secure APIs/Services

Topics Key concepts Secure and isolate access to azure resources by using Network Security Group and Application Security Group Secure and isolate access to azure resources by using Service Enpoints Secure backend API by using API Management Related topics Onboarding : Azure Infrastructure Onboarding : Azure Infrastructure deployment Onboarding : Azure API Performance With Azure API Management ServiceContinue reading “Onboarding : Azure Secure APIs/Services”

Docker, container, Kubernetes

Topics Key Concepts Docker Customize a docker image for your app local Kubernetes cluster with Minikube Minikube Running Pod/Container Related topics Key Concepts Docker : Docker is a technology that enables you to deploy applications and services quickly and easily. Docker app : A Docker app runs using a Docker image Docker image : AContinue reading “Docker, container, Kubernetes”

Onboarding : Azure Configure NSG, ASG, Firewall, and Service Endpoints

Topics Configure Network Security Group (NSG) Configure Application Security Group (ASG) Configure Service Firewall Storage Configure Service Endpoints Storage Configure Network Security Group (NSG) The following figure demonstrates, what we implement in the following code [Source]. Remember that the default rules deny all inbound traffic into a virtual network, unless this traffic is coming fromContinue reading “Onboarding : Azure Configure NSG, ASG, Firewall, and Service Endpoints”

AWS : Business Objectives

Topics Key concepts Big picture Developing your intuition Uptime Uptime calculation Drafting a Service Level Agreement Recovery Time Objectives (RTO) Recovery Point Objective (RPO) RDS database Disaster Recovery CloudFront Business Objectives define how the business can market and sell its products and services. It is crucial for all parts of the business to agree andContinue reading “AWS : Business Objectives”