Tamnoon

The long overdue latest update to the Latio Tech list has arrived, adding over 20 new vendors and doing some re-positioning and cleaning up! Changelog is here: 1. Added Edera to Boundary Breakers and container runtime - a unique solution for isolating container workloads making them actually function like VMs instead of playing pretend like we do 2. Added JupiterOne to Remediation Platforms - easy data lake management, so you it can fit into really any category. 3. Added Brinqa to Remediation Platforms - A good vulnerability management platform for enterprises with a lot of diverse workloads 4. Added Operant AI to LLM - the team at operant has been busy applying their CADR tool to AI workloads 5. Added Quokka.io to Mobile - a cool option for static and dynamic analysis of mobile app binaries 6. Added Doyensec to Pentesters - smart team with great Javascript expertise 7. Added ETHIACK to DAST - DAST and pentesting combined, now featuring AI 8. Added RAD Security and ARMO to CDR - an overdue update from when I kept CDR separate from needing an agent 9. Added ClearVector to CDR, Container Runtime, and Cloud Identity - a holistic identity focused approach to detection and resposne 10. Added Arcjet to ADR - okay okay this one is more a RASP but it does cool stuff for some easy security in JavaScript and I'm not making a separate category for RASP from ADR. 11. Added Zania to GRC Automation - This tool is very cool and will uplift existing standards for compliance reporting since LLMs read better than humans do. 12. Added Conveyor to GRC Automation - the leader in questionnaires and trust centers keeps doing that. 13. Added SafeBase to GRC automation - ez button for a security webpage and NDA request flows 14. Added Lineaje Inc to SCA - everything a nerdy SBOM and attestation lover could as for. 15. Added Clutch Security to Cloud Identity - an extremely strong solution for NHI management and insights 16. Added Permiso Security to Cloud Identity - they were under boundary breakers but now that I have this cloud identity category it's a better fit - extremely strong ITDR platform 17. Added Whiteswan Identity Security to Cloud Identity - A great solution to grant and track access to Windows cloud workloads - you can even do stuff like require MFA for specific file access! 18. Added Breez Security to Cloud Identity - Identity threat detection for cloud resources 19. Added Procyon to Cloud Identity - JIT for cloud workloads 20. Added Intruder to DAST - a strong web based network and application DAST scanner 21. Added HCL AppScan to DAST - a feature rich but older desktop based DAST. 22. Added Tamnoon to MDR and Remediation Platforms - A unique approach to getting CNAPP findings resolved - is such a thing even possible?? 23. Added Cygnostic to MDR a managed service offering for application and cloud security 24. Added AppSentinels to API Security - an extremely strong and competitive offering for API security https://list.latio.tech/

Excited to announce my first-ever book signing at AWS re:Invent! I’ll be signing copies of “Cloud Native Application Protection Platforms,” published by O’Reilly, in partnership with Tamnoon. Thanks to Marina S., Ran Nahmias and David Pozo for being awesome! If you’re passionate about securing cloud-native environments or simply curious about how CNAPPs can revolutionize your security posture, I’d love to chat, share insights, and, of course, sign your copy! 📍 Where & 📅 When: Secret/TBD DM for further details so you can give me your best Elvis “uh huh”, grab a book, and talk about securing the future of cloud-native applications. #AWS #reInvent #CNAPP #CloudNativeSecurity #BookSigning #CyberSecurity

🎉 BREAKING: Wiz acquires Dazz Today, we're thrilled to announce that Wiz has acquired Dazz, merging the leading CNAPP with the top ASPM and remediation platform. This will *revolutionize* how teams remediate risks: ✨ Detect AND remediate risks in one unified platform for code, cloud, apps and infra ☁️ Unlock full code-to-cloud visibility and fixes We're entering an exciting new chapter: revolutionizing remediation and application security. And there's no better partner for this journey than Dazz. Here's to a safer, more secure future! 🥂 https://lnkd.in/dH8K5vH6

New York! What can we say? Always an incredible time in this city...made even better with a one of a kind wine cellar all to ourselves! Our online community continues to grow by the day, but there's no substitute for getting out from behind the screens and laughing in person, building relationships, and strengthening ties. We can't wait to get back! Many thanks to Tamnoon for supporting the evening's festivities!

#AWS has (finally) released centralized managed root access! 🎉 After you centralize root access for member accounts, you can choose to remove account root user credentials—including keys, passwords, and MFA—which will be permanently deleted with no option for recovery through standard flows. While this enhances security, you should be very, very careful when touching such a delicate element of your cloud topology. The Top 5 Things You Need to Do Before Deleting Root Access: ➡ 𝐑𝐮𝐧 𝐚 𝐃𝐞𝐩𝐞𝐧𝐝𝐞𝐧𝐜𝐲 𝐀𝐮𝐝𝐢𝐭: Use AWS’s built-in CloudTrail and the Config Tool to identify calls relying on root credentials (which should not have any dependencies, as it’s not the best practice). ➡ 𝐀𝐮𝐭𝐨𝐦𝐚𝐭𝐞𝐝 𝐑𝐨𝐨𝐭 𝐀𝐜𝐜𝐞𝐬𝐬 𝐌𝐨𝐧𝐢𝐭𝐨𝐫𝐢𝐧𝐠: Set up AWS CloudTrail to detect and alert on any root account usage. ➡ 𝐔𝐬𝐞 𝐂𝐮𝐬𝐭𝐨𝐦 𝐑𝐨𝐨𝐭 𝐀𝐜𝐜𝐨𝐮𝐧𝐭 𝐏𝐨𝐥𝐢𝐜𝐢𝐞𝐬: Use a service control policy in AWS Organizations to explicitly deny root account usage across member accounts. Consider catastrophic events in case root access is needed and consider adding exceptions. ➡ 𝐃𝐞𝐥𝐞𝐠𝐚𝐭𝐢𝐨𝐧 𝐨𝐟 𝐀𝐜𝐭𝐢𝐨𝐧𝐬: Modify IAM roles and policies to ensure all privileged actions are transitioned from root access to IAM roles within the management account or delegated to specific member accounts. ➡ 𝐂𝐫𝐞𝐚𝐭𝐞 𝐚 𝐁𝐚𝐜𝐤𝐮𝐩 𝐒𝐭𝐫𝐚𝐭𝐞𝐠𝐲: Plan for a worst-case scenario. If recovery isn’t an option, what’s your fallback? ➡ 𝐁𝐨𝐧𝐮𝐬 - 𝐒𝐞𝐞𝐤 𝐄𝐱𝐩𝐞𝐫𝐭 𝐀𝐝𝐯𝐢𝐜𝐞: Experts (that’s us at Tamnoon!) can help you understand and make a safe plan. The blast radius of deleting a root credential can be huge, and specifically devastating for companies with fast release cycles. 📆 Tamnoon’s experts have tremendous experience analyzing the impact of complex process, and would be happy to help you plan and execute root deletion with ease. Just hit the reply button or DM me to schedule a session!