Sonraí Security

Thanks to @robtlee @philvenables @rmogull and the other authors for putting this out. For Risk #3, "Unmanaged AI Agent Attack Surface," we're recommending (at least in our world of the cloud) starting with IAM guardrails. For AWS users, start here: sonraisecurity.com/enforcing-ai-g…

@andresribeiroo The children yearn for the JSON (you can grab a tenant with us to check out per-service permission automations)

Ever since I was a kid I wanted to work configuring access permissions for more than 200 services in AWS IAM

Solving cloud sec at scale is hard. You have zombies, unused services, a need to grant *just* the right access at the right time, ... This month I'm looking at how @SonraiSecurity is solving this problem with their Cloud Permissions Firewall. Try it out: sonrai.co/cybr

Permissions Security has long been an issue for enterprise businesses. @SonraiSecurity found a way to deliver a safer, faster, and more scalable solution through their one-of-a-kind Cloud Permissions Firewall. Listen to Co-Founder Sandy Bird explain more: youtu.be/i_ydnfKUWzE

🎙️New Episode Alert dropping Tuesday, May 14th, 10am PST/6PM BST! 🎉 🔐 Navigating least privilege in multi-cloud setups can be tricky! Join us as Jeff Moncrief from @SonraiSecurity discusses why identity is the new network in our cloud-driven world. 🌐 #cloudsecurity

🔐 From on-prem to the cloud, identity management has evolved! 🌐 Identity is now the new network. Every VM, service, and app relies on roles & managed identities We spoke to @_securityjeff , Field CTO at @SonraiSecurity Security, on our podcast about this. #cloudsecurity

Previously I shared a video on the “cloud permissions firewall” from friends at @SonraiSecurity! It’s pretty cool to see cloud security settings distilled down to the ones that actually matter & a single-click easy button to lock it all down. Check it out: jh.live/Iwxr4xQ-yqY

@JosephWagnerJr @reInventParties We'll make an exception for you @JosephWagnerJr. Register and we'll approve it :)

@reInventParties @SonraiSecurity Do I need to be attending reinforce? Haha

This is the Must-Attend Party at #AWSreInforce with @SonraiSecurity! Walk through Philly and Join Us on June 10th at The Continental Midtown! Enjoy Food, Drinks, Free Swag, Plus Games you Won’t Want to Miss! bit.ly/Sonrai_reInfor… -Sponsored- #AWSreInforce

It's Always Sonrai in Philadelphia! Don't Miss Out on the Kickoff Party of the Night at #AWSreinforce! Free Food, Drinks, and of course, Plenty of Swag! bit.ly/Sonrai_reInfor… @SonraiSecurity -Sponsored-

As a Cybersecurity Content Creator, I am privileged to get access to information/solutions under embargo. I can finally talk about “Cloud Permissions Firewall” from @SonraiSecurity This solution addresses the complexities orgs face when building out IAM policies at scale or trying to maintain least privilege. How? 1️⃣Scaling least privilege by centrally restricting access to the most sensitive cloud permissions across AWS/Azure/GCP 2️⃣Disabling unused regions and unused services 3️⃣ Quarantining Zombie identities so they’re useless to attackers 4️⃣Maintaining least privilege with a default deny policy so new identities are protected Who I can see using it: 💪🏾Organisations looking to tackle least privilege access for machine identities 💪🏾Organisations with the flexibility to implement iam security controls and collaborate across developers and product managers 💪🏾Organisations feeling too overwhelmed at the prospect of even trying least privilege 🎂Note - this is not a solution that will blanket work for every organisation – there are specific use cases for where their Cloud Permission Firewall should be implemented. There is more to the solution than what I have called out and if you are one of the organisations that wants to explore this solution or if you are curious to know more about how least privilege at scale in one-click is possible, visit the link in the comments. This is a sponsored post, but the opinions shared are my own.

I caught wind of @SonraiSecurity’s “Cloud Permissions Firewall” and the idea is really cool: ☁️ Abstracting tens of thousands of AWS/Azure/GCP permissions down to the hundreds that matter most ❎Centralized management of unused risky permissions with an allow-by-exception approach 🌐Automatic restricting of regions, identities, and services that aren’t used to limit your attack surface It’s like the principle of least privilege can be achievable, uncomplicated, fast and sustainable at scale – all without disrupting development. I think it’s pretty slick, check it out! jh.live/sonrai

AWS users! This one's for you. A guide detailing everything you need to know about Service Control Policies: ✅ What are they ✅ How do they work ✅ When do you use them ✅ Challenges of using them #aws #scp #servicecontrolpolicy #devops bit.ly/3uPy2Pu

Nathan Schmidt of @SonraiSecurity shares his #predictions for 2024 and says, the #cybersecurity industry is on the cusp of a significant transformation. And the era of the 'jack-of-all-trades' is giving way to a new paradigm of specialization. vmblog.com/archive/2023/1…

There are so many cloud security solutions; they’re all claiming to do the same things! We break down the differences between us and a market-favorite, Wiz. ✨ Explore the two solutions here → ow.ly/8rjZ50Q58Jf

We can't make cloud security easy...but we can try! Here's Sonrai's 4 step process for reducing identity risks. 👉 ow.ly/5Twn50Q8pW3

Are you a Wiz customer? Great choice! ✨ But how can you make that investment even better? 🤔 We cover what Wiz offers you and what they're missing in cloud identity and access management. Check out the blog: ow.ly/EEUo50Q58yv

These 3 breaches all have one thing in common. 👇 The attackers abused cloud permissions to get what they wanted. This latest blog analyzes what happened, how it happened, and how a CIEM could have helped in these three stories. ow.ly/IPvh50Q4JqV

What session got people so stirred up it's won 'Most Interactive'? 🎮 Live Hack: The Anatomy of a Cloud Attack, here we go @TheJeffMoncrief You can see for yourself on-demand here: ow.ly/KMMm50PXQwm

Are these 3 identity risks in your cloud? After offering the Cloud Identity Diagnostic for months, we've compiled some of the most common issues we unearth for organizations. More in the blog. ➡️ ow.ly/Keeg50Q16XJ

ACCESS Summit 'Hidden Gem' session. ✨💎 Mapping the Battlefield by Untanglinging Cloud IAM. @SecUnfPodcast walks us through every identity risk you could face in the cloud. On-demand session available here: ow.ly/U90Z50PXQbX