Profile

Soham Bowman

This user account status is Approved

Comments Comments

Thanks for breaking down the roles of different AWS security services so clearly!

On Combining security controls to apply defense in depth (for example, AWS Certificate Manager [ACM], AWS WAF, AWS Config, AWS Config rules, Security Hub, GuardDuty, security groups, network ACLs, Amazon Detective, Network Firewall)

I think the topic of AWS Identity and Access Management (IAM) should have been covered in more detail.

On Cloud incidents

Good point on the use of network ACLs for security.

On Route tables, security groups, and network ACLs

What is the best TTL setting for a mission-critical application?

On Configuring appropriate DNS records

Appreciate the detailed explanation on network verification. Very useful!

On Verifying that a network configuration meets network design requirements (for example, Reachability Analyzer)

The post is useful, but a bit too high level. Would have loved to see more technical depth.

On Translating business requirements to measurable metrics

Thanks for this detailed post. Made my study session much easier.

On Encryption options for at-rest and in-transit logs and metrics (for example, client-side and server-side, AWS Key Management Service [AWS KMS])

Can I use Route 53 health checks for non-AWS resources?

On Configure Elastic Load Balancing (ELB) and Amazon Route 53 health checks.

Very informative post!

On Integration of Route 53 with other AWS networking services (for example, Amazon VPC)

What about Terraform? Do you think it is better than CloudFormation for AWS infrastructure management?

On Infrastructure automation

load more comments