You’ve now got your EC2 instances looked after with Amazon Inspector, let’s make sure that you have coverage of your Lambda functions, ECR image registries and integrate Inspector with your CICD processes. Amazon Inspector (The Sequel) Now that we’ve covered how Amazon Inspector helps secure your EC2 instances, let’s dive into the other ways you can use it to protect more areas of your cloud environment. Inspector doesn’t stop at EC2—it extends its powerful scanning capabilities to Amazon ECR container images, Lambda functions, and even your CI/CD pipelines. By integrating vulnerability assessments and compliance checks into these critical areas, you can ensure that your security practices keep pace with the dynamic nature of cloud-native applications. In this post, we’ll explore how Inspector works with ECR, Lambda, and CI/CD workflows, giving you a more comprehensive approach to security across your AWS infrastructure. Read more

Now that we have secured our account with Security Hub, let’s have a look at managing vulnerabilities across EC2 instances, Lambda, Containers, CICD integration and CIS status of our instances using Amazon Inspector. In this installment we’ll look at the setup of Inspector and getting started with EC2 OS scanning for both Vulnerabilities and CIS status. Amazon Inspector Amazon Inspector is a powerful automated security assessment tool designed to help you improve the security and compliance of applications deployed on AWS. By continuously scanning your workloads for vulnerabilities, configuration issues, and deviations from security best practices, Inspector provides actionable insights to identify and fix potential threats. Whether you’re managing a small application or a large-scale environment, Amazon Inspector simplifies the process of finding weaknesses, ensuring your infrastructure is secure and aligned with industry standards. In this post, we’ll explore how Amazon Inspector works and why it’s an essential tool for maintaining a secure AWS environment. Read more

Following on from getting your account setup, let’s have a look at how we can secure it and continue to secure it. Security Hub AWS Security Hub is a cloud security service that provides a comprehensive view of your security posture across AWS accounts. It aggregates, organizes, and prioritizes security findings from multiple AWS services (such as Amazon GuardDuty, AWS Config, and Amazon Inspector) and third-party security tools. Key features include: Read more

If you’ve been paying attention, you’ll know that I love the AWS Graviton Processor. The AWS Graviton processor is a custom-designed processor by AWS designed to deliver the best price performance for cloud workloads. They are based on the ARM64/AARCH64 architecture, which is more efficient than the x86 architecture that is traditionally used in servers. This makes Graviton processors ideal for a wide range of workloads, including web applications, databases, and machine learning. Read more

For any followers I’m an advocate for modern technologies. This is across the sustainability, performance and security. I’ve written a lot about Graviton in the past and I’ve also filmed videos with the AWS team about Graviton and I’ve also talked about security features and modern http protocols. The question I’ve got, can I run a reasonable complex website using modern technologies that employ all the modern protocols and security features. Read more