Olivia
Online
Sonraí Security
@SonraiSecurity
the one and only Cloud Permissions Firewall. Least privilege on AWS/GCP/Azure. No more policy editing.
New York, NY
Joined December 2017
281 Following
4.7K Followers
1.1K Posts
Thanks to @robtlee @philvenables @rmogull and the other authors for putting this out.
For Risk #3, "Unmanaged AI Agent Attack Surface," we're recommending (at least in our world of the cloud) starting with IAM guardrails. For AWS users, start here: https://t.co/9u4eFAnHlT
The “AI Vulnerability Storm”: Building a “Mythos-ready” Security Program.
https://t.co/72ijdKAboN
https://t.co/gUc3fuC2oT
@andresribeiroo The children yearn for the JSON
(you can grab a tenant with us to check out per-service permission automations)
Solving cloud sec at scale is hard. You have zombies, unused services, a need to grant *just* the right access at the right time, ...
This month I'm looking at how @SonraiSecurity is solving this problem with their Cloud Permissions Firewall. Try it out: https://t.co/Hef4vGduZF
Permissions Security has long been an issue for enterprise businesses. @SonraiSecurity found a way to deliver a safer, faster, and more scalable solution through their one-of-a-kind Cloud Permissions Firewall.
Listen to Co-Founder Sandy Bird explain more: https://t.co/jvpuixFgol
Who to follow
Expel
@ExpelSecurity
Human-led, AI-accelerated security.
Moleculin Biotech 
@moleculinbio
Moleculin (NASDAQ: $MBRX) is a clinical stage pharmaceutical company with a broad portfolio of drug candidates targeting highly resistant cancers and viruses.
DASH
@dashdatadog
DASH is @datadoghq annual conference. Dive into what’s next in AI and go from hype to hands-on know how at the observability + AI event of the year. June 9-10
🎙️New Episode Alert dropping Tuesday, May 14th, 10am PST/6PM BST! 🎉
🔐 Navigating least privilege in multi-cloud setups can be tricky! Join us as Jeff Moncrief from @SonraiSecurity discusses why identity is the new network in our cloud-driven world. 🌐
#cloudsecurity
🔐 From on-prem to the cloud, identity management has evolved!
🌐 Identity is now the new network. Every VM, service, and app relies on roles & managed identities
We spoke to @_securityjeff , Field CTO at @SonraiSecurity Security, on our podcast about this.
#cloudsecurity
Previously I shared a video on the “cloud permissions firewall” from friends at @SonraiSecurity! It’s pretty cool to see cloud security settings distilled down to the ones that actually matter & a single-click easy button to lock it all down. Check it out: https://t.co/cx92aWY55x
@JosephWagnerJr @reInventParties We'll make an exception for you @JosephWagnerJr. Register and we'll approve it :)
It's Always Sonrai in Philadelphia!
Don't Miss Out on the Kickoff Party of the Night at #AWSreinforce!
Free Food, Drinks, and of course, Plenty of Swag!
https://t.co/bfe2UpHq9Q
@SonraiSecurity -Sponsored-
As a Cybersecurity Content Creator, I am privileged to get access to information/solutions under embargo. I can finally talk about “Cloud Permissions Firewall” from @SonraiSecurity
This solution addresses the complexities orgs face when building out IAM policies at scale or trying to maintain least privilege. How?
1️⃣Scaling least privilege by centrally restricting access to the most sensitive cloud permissions across AWS/Azure/GCP
2️⃣Disabling unused regions and unused services
3️⃣ Quarantining Zombie identities so they’re useless to attackers
4️⃣Maintaining least privilege with a default deny policy so new identities are protected
Who I can see using it:
💪🏾Organisations looking to tackle least privilege access for machine identities
💪🏾Organisations with the flexibility to implement iam security controls and collaborate across developers and product managers
💪🏾Organisations feeling too overwhelmed at the prospect of even trying least privilege
🎂Note - this is not a solution that will blanket work for every organisation – there are specific use cases for where their Cloud Permission Firewall should be implemented.
There is more to the solution than what I have called out and if you are one of the organisations that wants to explore this solution or if you are curious to know more about how least privilege at scale in one-click is possible, visit the link in the comments.
This is a sponsored post, but the opinions shared are my own.
I caught wind of @SonraiSecurity’s “Cloud Permissions Firewall” and the idea is really cool:
☁️ Abstracting tens of thousands of AWS/Azure/GCP permissions down to the hundreds that matter most
❎Centralized management of unused risky permissions with an allow-by-exception approach
🌐Automatic restricting of regions, identities, and services that aren’t used to limit your attack surface
It’s like the principle of least privilege can be achievable, uncomplicated, fast and sustainable at scale – all without disrupting development. I think it’s pretty slick, check it out! https://t.co/H9UmCvYtUv
AWS users! This one's for you.
A guide detailing everything you need to know about Service Control Policies:
✅ What are they
✅ How do they work
✅ When do you use them
✅ Challenges of using them
#aws #scp #servicecontrolpolicy #devops
https://t.co/y4Bggykfqb
Nathan Schmidt of @SonraiSecurity shares his #predictions for 2024 and says, the #cybersecurity industry is on the cusp of a significant transformation. And the era of the 'jack-of-all-trades' is giving way to a new paradigm of specialization. https://t.co/Jj9bGQARZz
There are so many cloud security solutions; they’re all claiming to do the same things!
We break down the differences between us and a market-favorite, Wiz. ✨
Explore the two solutions here → https://t.co/zrYQwDzub6
We can't make cloud security easy...but we can try!
Here's Sonrai's 4 step process for reducing identity risks.
👉 https://t.co/TDJhd0QlXP
Are you a Wiz customer? Great choice! ✨
But how can you make that investment even better? 🤔
We cover what Wiz offers you and what they're missing in cloud identity and access management.
Check out the blog: https://t.co/S7rpw4O1P8
These 3 breaches all have one thing in common. 👇
The attackers abused cloud permissions to get what they wanted.
This latest blog analyzes what happened, how it happened, and how a CIEM could have helped in these three stories.
https://t.co/qWU05bMuAG
What session got people so stirred up it's won 'Most Interactive'? 🎮
Live Hack: The Anatomy of a Cloud Attack, here we go @TheJeffMoncrief
You can see for yourself on-demand here:
https://t.co/yYJJwzzCyJ
Are these 3 identity risks in your cloud?
After offering the Cloud Identity Diagnostic for months, we've compiled some of the most common issues we unearth for organizations.
More in the blog. ➡️ https://t.co/GwPzLo3dZH
ACCESS Summit 'Hidden Gem' session. ✨💎
Mapping the Battlefield by Untanglinging Cloud IAM.
@SecUnfPodcast walks us through every identity risk you could face in the cloud.
On-demand session available here:
https://t.co/zUFgG5kRKE
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers