Topic
Compliance
5 articles on compliance.
- Security
Cloud compliance: SOC 2, HIPAA, and GDPR, explained
What SOC 2, HIPAA, and GDPR each require, what your cloud provider covers versus what you own, data residency, BAAs, and a realistic path to compliance.
- Security
Cloud IAM best practices: least privilege that actually holds
How to set up cloud IAM properly: least-privilege roles, MFA, SSO, no long-lived keys, service accounts for workloads, and a quarterly audit habit.
- Security
The shared responsibility model: which half of cloud security is yours
Who secures what in the cloud: the provider secures the platform, you secure everything you put on it. The IaaS/PaaS/SaaS split, and the misconfigurations behind most breaches.
- Security
Secure your first cloud account in an afternoon: the 10-point checklist
Ten controls to set before anything ships in a new AWS, Azure, or GCP account: root lockdown, MFA, least-privilege access, audit logging, blocked public storage, billing alerts.
- Glossary
Region & Availability Zone
A region is a geographic cluster of cloud data centres; an availability zone is one isolated data centre inside it. What each means and how to choose when you migrate.