alcide

Alcide Blog

Cloud-native Security Provider

Elad Ishay


Recent Posts

DevOps KPIs: Continuous Integration /Delivery to Security Automation

Mar 7, 2019 4:47:13 AM / by Elad Ishay posted in cloud security, microservices, devops, continuous integration

0 Comments

 

Read More

DevOps KPIs: How to Measure Success, Part 1- Asset Management and Monitoring

Feb 21, 2019 4:50:57 AM / by Elad Ishay posted in cloud security, kubernetes, microservices, devops, PaaS

0 Comments

 
The post is part one of a two blog series on DevOps KPIs
 
DevOps is no longer a new concept. There are entire tool ecosystems, methodologies, and transformation models, as well as endless resources out there to guide companies along the DevOps journey. But how do you do the basics well, and how do you measure success?

The tools you use will differ if you’re running a Platform as a Service (PaaS), running a mobile application, or serving as a bank. Nevertheless, there are some core Key Performance Indicators (KPIs) that should be common to all of these environments. This article will take you through the KPIs you should either evaluate or revisit and examine what you should consider when measuring success.

Read More

How to Improve Your Kubernetes Security?

Dec 19, 2018 9:00:00 AM / by Elad Ishay posted in cloud security, kubernetes, workload protection, containers, microservices, devops

0 Comments

 

Last week our team came back from KubeCon Seattle, CNCF largest event to date with over 8000 attendees (!) where they showcased our Microservices Firewall, and I thought that now would be a good time to touch base again and talk about Kubernetes security.

Read More

What Is ChatOps and How Does It Scale Up Cloud Security?

Oct 18, 2018 3:43:35 AM / by Elad Ishay posted in devsecops, cloud security, Slack, chatops

0 Comments

 

 

Here’s a recent scenario: an organization’s  security team receives an alert from the monitoring system on their Slack channel with the content below:


AWS Account : SomeCompany_Development

IAM User : joel.burns@company.com

AWS API : AllowSecurityGroupIngress

Source IP Address : xxx.xxx.xxx.xxx

Security Group ID : sg-4fxxx4dx

Security Group Region : us-east-2

IP Protocol : tcp

From : 22

To : 22

IPRange : 0.0.0.0/0

Read More

Exposing Kubernetes Workloads to the World Without Losing Sleep (or your Mind)!

Aug 22, 2018 4:12:32 AM / by Elad Ishay posted in kubernetes

1 Comment

So, you’ve got your Kubernetes cluster up and running, and now its time to expose workloads to the outside world in a secure fashion. 

 

Read More

How to Configure Jenkins BitBucket Branch Source Plugin?

Jul 24, 2018 4:58:42 AM / by Elad Ishay posted in devsecops, Jenkins, BlueOcean, Apache-Tomcat, Bitbucket, bitnami

0 Comments

In case your Git repo resides in Bitbucket and Jenkins is your favourite butler, you’ve come to the right place.

 

 

There is a great plugin out there that helps connecting Jenkins to your Bitbucket account called Bitbucket Branch Source Plugin.
This plugin comes really handy especially if your project has multiple branches. In Jenkins lingo “Multibranch Project”.

Read More

AWS Security Best Practices (+ Free white paper to download)

Jun 20, 2018 12:57:14 PM / by Elad Ishay posted in AWS, cloud security, security services

0 Comments

Photo www.bluecoat.com//Flickr

 

Security is critical to any organization. In the tech world, security can be defined as a set of controls and policies that protect and secure applications, data, and the technological infrastructures they operate on. In this blog we will be looking at the most common AWS security best practices.  

Read More