GCP security audit – some considerations
Security Audits are a top requirement for any public cloud migration – pre-migration and post migration effort.
Anuj Varma offers an in-depth cloud security audit, covering all the pillars of security.
Some common vulnerabilities that occur on GCP include:
- — Service Account Credentials in Code. It’s important that Svc Acct creds be secured – especially if you have downoaded a JSON Key file.
- — Whitelist / Enable APIs as needed
- — Leaving Public IPs intact on Compute Engine Instances
- — CMEKs – While GCP provides encryption by default (at rest data), it is recommended to leverage CMKs (CMEKs in GCP).
- — Layer 7 monitoring and alerting for GCP Hosted Apps
- — GKE Master Node Unprotected
For detailed google cloud architect blog posts and information, visit googlecloudarchitect.us
Leave a Reply