Securing Google Cloud: The MVSP Checklist Guide
Google Cloud MVSP defines 60 controls across 6 domains for a minimum security baseline. Use an open-source tool to learn and track your progress.
Topic
Security
A collection of posts on security.
Privileged Account Monitoring: 5 Hard Truths
A brief on the hard truths behind privileged access and its outsized role in modern breaches.
Deploying Google ADK Agents to Vertex AI Agent Engine with Agent Identity
A brief on Google Cloud's new Agent Identity feature, giving deployed agents unique least-privilege principals tied to their lifecycle.
Securing Tiny Tech: NIST Finalises Lightweight Cryptography Standard
A brief on NIST SP 800-232, the lightweight cryptography standard for constrained devices.
Secure Federated Access to Google Cloud: Simulating Access with a Headless OIDC Client
A step-by-step demonstration of federated identity access to Google Cloud resources using a headless OIDC client and Workload Identity Federation.
Secure Federated Access to Google Cloud: Building a Mock OIDC Identity Provider
A step-by-step guide to building a mock OpenID Connect (OIDC) Identity Provider for workload identity federation with Google Cloud.
Google Cloud Run Security Best Practices
A brief on security best practices for Google Cloud Run serverless container platform.
Have You Been Pwned? A Reboot
A brief on Have I Been Pwned 2.0, a reboot of Troy Hunt's popular breach tracking service.
Llama Firewall: Comprehensive Guardrails for LLM Applications
A brief on Llama Firewall from Meta, a comprehensive system of guardrails for securing LLM applications and agents.
Content Safety with Llama Guard and Groq
A brief on content safety (according to MLCommons taxonomy) using Meta Llama Guard and Groq Cloud.