Introduction Heavily regulated enterprises involved with sensitive commercial and customer data often treat public cloud services as low-trust and enforce inspection, filtering and data loss prevention on data transfer to services such as S3. This introduces complexity and performance overheads for development teams looking to build applications in AWS that rely on S3 for storage. […]
Self-Service Patching at Scale with AWS Systems Manager
Introduction With recent advancements and the on-going adoption of immutable infrastructure, it has never been easier to deploy and maintain highly scaled applications in the cloud. If your system requires an update, you can simply make your changes in code and re-deploy the resources. While the immutable approach can be adopted for applications with attributes […]
Read More… from Self-Service Patching at Scale with AWS Systems Manager
Pulling Puppet’s Strings with AWS OpsWorks CM
Introduction We recently worked with one of our clients to provide a configuration management capability. This capability assists them with managing the more traditional operating system and application settings in their AWS EC2 environment that run “long lived” applications, or more specifically, those that had lower automation capabilities, or had characteristics that did not lend […]
Read More… from Pulling Puppet’s Strings with AWS OpsWorks CM
Cloud Operating Models: How To Expand Skillsets, Practices And Procedures
Introduction Moving to the cloud is a complex undertaking. It’s far more than a tech-centric re-platforming exercise. When we look holistically at cloud adoption, technical aspects only touch the tip of the iceberg. An Adaptive Operating Model If you’re serious about cloud (and modernising to remain relevant in the digital economy), you will also need […]
Read More… from Cloud Operating Models: How To Expand Skillsets, Practices And Procedures
Gmail Audit Add-on for Splunk
As part of a cyber-security programme at one of our larger customers, there was a requirement to monitor email header data from one of the client’s subsidiary organisations. This data needed to be stored in the Splunk deployment of the parent organisation. While it sounds like a reasonably straightforward requirement, there were a lot of […]
Key Takeaways for Recognising and Supporting Diversity in Technology
As a fast-paced and growing cloud consultancy focused on the enterprise, Sourced understands and embraces the importance that diversity can bring to our teams and workplace culture. Currently, we have approximately 20 per cent female representation globally across all functions and are always looking for ways to support and encourage inclusiveness and diversity within our […]
Read More… from Key Takeaways for Recognising and Supporting Diversity in Technology
Music to My Ears – A Modern Cloud Architecture for Legacy Audio Streams
Introduction Earlier in the year we worked with one of our Australian media clients to provide a streaming platform capability to service a subset of their online listeners during their national music poll event. Although an Australian event, listeners tune in from all over the world on a wide range of devices, operating systems and […]
Read More… from Music to My Ears – A Modern Cloud Architecture for Legacy Audio Streams
Hacking Amazon Web Services
While preparing for a security game day with workloads running on Amazon Web Services (AWS), I decided to get more familiar with some of the tools our opponents would use when attempting to compromise the account and infrastructure. Game days typically involve two teams – the Blue Team, who concentrate on defence and mitigation, and […]
An Analysis of the APRA Cloud Computing Services Paper Update
An Analysis of the Australian Prudential Regulation Authority (APRA) Shared Computing Services Paper Update In Q3 2018, the Australian Prudential Regulation Authority (APRA), an independent statutory authority that supervises institutions across banking, insurance and superannuation and promotes financial system stability in Australia, published an addendum to its original 2015 shared computing services paper. This addendum […]
Read More… from An Analysis of the APRA Cloud Computing Services Paper Update
The “Cloud Hype Cycle” and How to Avoid It
Introduction The move to cloud computing is inevitable and inexorable. However, for large enterprises, frequently burdened with strict regulatory requirements and a constantly evolving threat environment, adopting cloud is not a trivial matter. Enterprises can miscalculate the organisational impact of cloud by not viewing it holistically or “at scale”. Even organisations with the best intentions […]