A Practical Guide to Securing AWS, Azure, and Google Cloud
Introduction: Why Cloud Security Is an Engineering Problem
- The Scale of the Problem
- What Makes Cloud Security Different
- How to Use This Book
Chapter 1: The Cloud Security Landscape
- What Is Cloud Security Engineering
- The Shared Responsibility Model Across Providers
- How Cloud Attacks Differ From Traditional Attacks
- The Economics of Cloud Security
- Common Pitfalls and Operational Trade-offs
- Building Your Cloud Security Mindset
Chapter 2: Identity and Access Management
- IAM Fundamentals and the Principle of Least Privilege
- AWS IAM: Policies, Roles, and Advanced Patterns
- Azure RBAC and Entra ID Security
- GCP IAM and Organization Policies
- Cross-Account and Cross-Cloud Identity Strategies
- Case Study: Capital One (2019) – SSRF, IMDSv1, and the Cost of Excessive IAM Roles
- Case Study: Snowflake (2024) – Credential Stuffing and the MFA Gap
- Case Study: Okta (2023) – Session Token Theft and MFA Bypass
- IAM Attack Paths: Privilege Escalation and Identity Abuse
- IAM Operational Trade-offs and Common Pitfalls
Chapter 3: Cloud Networking Security
- Cloud Networking Fundamentals
- AWS VPC Security and Network ACLs
- Azure Virtual Networks and NSGs
- GCP VPC and Firewall Rules
- Private Connectivity: VPC Peering, ExpressRoute, Interconnect
- DNS Security and DDoS Protection
- Attack Simulation: Network-Based Lateral Movement in AWS
- Networking Decision Framework: Security Group vs. NACL vs. Firewall
- Networking Operational Trade-offs and Common Pitfalls
Chapter 4: Zero Trust Architecture in the Cloud
- Zero Trust Principles for Cloud Environments
- Microsegmentation Across Platforms
- Identity-Aware Proxy and API Security
- Device and Workload Attestation
- Implementing Zero Trust in Multi-Cloud
- When Zero Trust Controls Fail
- Zero Trust Operational Trade-offs and Common Pitfalls
Chapter 5: Infrastructure as Code Security
- The Security Case for Infrastructure as Code
- Terraform Security Best Practices
- AWS CloudFormation and Native IaC Security
- Azure Bicep/ARM Template Security
- Policy as Code: OPA, Sentinel, Conftest
- Drift Detection and Compliance Automation
- Decision Framework: Choosing an IaC Tool
- When IaC Security Controls Fail
- IaC Operational Trade-offs and Common Pitfalls
Chapter 6: Container and Kubernetes Security
- Container Security Fundamentals
- EKS, AKS, and GKE Hardening
- Image Scanning and Signing
- Runtime Security and Admission Controllers
- Service Mesh Security: mTLS and Authorization
- Case Study: Kubernetes Cluster Compromise Patterns (2024)
- Kubernetes Attack Paths and Defense
- When Container Security Controls Fail
- Container and Kubernetes Operational Trade-offs and Common Pitfalls
Chapter 7: Serverless and Application Security
- Serverless Security Model
- AWS Lambda Security Patterns
- Azure Functions and GCP Cloud Functions Hardening
- API Gateway Security Across Platforms
- Application Layer Threats and WAF
- Function-Level Isolation and Resource Limits
- Attack Simulation: Serverless Exploitation Chain
- When Serverless Security Controls Fail
- Serverless Operational Trade-offs and Common Pitfalls
Chapter 8: Secrets Management and Encryption
- Secrets Management Fundamentals
- AWS Secrets Manager, Parameter Store, and KMS
- Azure Key Vault and Managed Identities
- GCP Secret Manager and Cloud KMS
- Encryption Architecture Patterns
- Key Rotation, HSMs, and Customer-Managed Keys
- Decision Framework: Choosing a Secrets Management Solution
- Secrets and Encryption Operational Trade-offs and Common Pitfalls
Chapter 9: Logging, Monitoring, and Threat Detection
- Cloud Logging Architecture
- AWS CloudTrail, GuardDuty, and Security Hub
- Azure Monitor, Defender for Cloud, and Sentinel
- GCP Cloud Audit Logs, Chronicle, and SCC
- Detection Engineering: SIEM Queries and Correlation Rules
- Threat Hunting Methodologies for Cloud
- Troubleshooting Logging and Detection Issues
- When Logging and Detection Controls Fail
- Logging and Detection Operational Trade-offs and Common Pitfalls
Chapter 10: Incident Response in the Cloud
- Why Cloud Incident Response Is Different
- Detection and Triage Workflows
- Containment Strategies: Network, Identity, and Compute
- Forensic Challenges in Ephemeral Environments
- Automated Response Playbooks
- Post-Incident Recovery and Lessons Learned
- Case Study: Cloud Credential Exposure via CI/CD Pipeline
- When Incident Response Controls Fail
- Incident Response Operational Trade-offs and Common Pitfalls
Chapter 11: DevSecOps and CI/CD Security
- The DevSecOps Pipeline
- CI/CD Pipeline Security Hardening
- Static Analysis: SAST, DAST, and SCA
- Container and Image Scanning in Pipelines
- Deployment Gates and Policy Enforcement
- Case Study: CI/CD Pipeline Compromise Patterns
- Secrets in Pipelines and Build Systems
- SBOM Generation and Management
- Artifact Signing and Verification
- Dependency Management and Vulnerability Tracking
- Cloud-Specific Supply Chain Attacks
- SLSA Framework and Provenance
- Supply Chain Operational Trade-offs and Common Pitfalls
Chapter 13: Governance, Compliance, and Multi-Account Architecture
- Multi-Account and Multi-Tenant Architecture
- Landing Zone Design Patterns
- Compliance Frameworks: NIST, CIS, SOC 2, ISO 27001
- Automated Compliance and Audit
- Cost Governance and Security Optimization
- Cross-Cloud Governance Challenges
- When Governance Controls Fail
- Governance and Compliance Operational Trade-offs and Common Pitfalls
Chapter 14: Advanced Topics and Emerging Threats
- AI and ML Workload Security
- Hybrid and Multi-Cloud Security Architectures
- Data Protection: Classification, DLP, and Tokenization
- Disaster Recovery and Resilience Patterns
- Emerging Cloud Threats: AI-Powered Attacks, Supply Chain, Zero-Day
- The Future of Cloud Security Engineering
- Advanced Topics Operational Trade-offs and Common Pitfalls