IaC Security Guide: CloudFormation

You're reading Gomboc's field guide to securing infrastructure as code. The following resources are tactical guides created specifically for platform engineers, devsecops, and cloud security practitioners to leverage in their day to day work.

Book a demo
view all
Security Pitfalls
Comparsion Guides
Resources

Change Management with CloudFormation

Effective change management is crucial for maintaining a secure and stable infrastructure when using AWS CloudFormation. This guide explores key considerations for implementing robust change management practices with CloudFormation, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

Resource Protection in CloudFormation

Network security is a critical aspect of cloud infrastructure, and CloudFormation provides powerful tools to define and manage secure network architectures. This guide explores key considerations for implementing network security using CloudFormation, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

Network Security with CloudFormation

Network security is a critical aspect of cloud infrastructure, and CloudFormation provides powerful tools to define and manage secure network architectures. This guide explores key considerations for implementing network security using CloudFormation, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

Stack Permissions in CloudFormation

CloudFormation stack permissions are crucial for maintaining a secure and well-managed infrastructure as code environment. This guide explores key security considerations for CloudFormation stack permissions, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

CloudFormation Template Security

CloudFormation templates are powerful tools for defining and managing AWS infrastructure as code. However, with great power comes great responsibility, especially when it comes to security. This guide will explore key security considerations for CloudFormation templates, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

CloudFormation vs Pulumi: A Comparative Analysis

A comparative analysis of Amazon CloudFormation and Pulumi. We will compare the two tools based on various factors, including ease of use, flexibility and customization, performance, and community support. By examining these aspects, we can gain a better understanding of the strengths and weaknesses of each tool.
Read full Post

Change Management with CloudFormation

Effective change management is crucial for maintaining a secure and stable infrastructure when using AWS CloudFormation. This guide explores key considerations for implementing robust change management practices with CloudFormation, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

Resource Protection in CloudFormation

Network security is a critical aspect of cloud infrastructure, and CloudFormation provides powerful tools to define and manage secure network architectures. This guide explores key considerations for implementing network security using CloudFormation, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

Network Security with CloudFormation

Network security is a critical aspect of cloud infrastructure, and CloudFormation provides powerful tools to define and manage secure network architectures. This guide explores key considerations for implementing network security using CloudFormation, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

Stack Permissions in CloudFormation

CloudFormation stack permissions are crucial for maintaining a secure and well-managed infrastructure as code environment. This guide explores key security considerations for CloudFormation stack permissions, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

CloudFormation Template Security

CloudFormation templates are powerful tools for defining and managing AWS infrastructure as code. However, with great power comes great responsibility, especially when it comes to security. This guide will explore key security considerations for CloudFormation templates, focusing on best practices, common pitfalls, and practical remediation steps.
Read full Post

CloudFormation vs Pulumi: A Comparative Analysis

A comparative analysis of Amazon CloudFormation and Pulumi. We will compare the two tools based on various factors, including ease of use, flexibility and customization, performance, and community support. By examining these aspects, we can gain a better understanding of the strengths and weaknesses of each tool.
Read full Post
More guides are on the way! Check back here soon!
Key benefits

What is CloudFormation?

AWS CloudFormation is a powerful service that allows you to define, provision, and manage AWS infrastructure and resources using a declarative language. It enables you to treat your infrastructure as code, providing numerous benefits for cloud resource management.

Book a demoLearn more

Drift Detection and Change Sets

Preview proposed changes before applying them to your stack. Identify and track changes made to resources outside of CloudFormation.

Rollback Triggers

Automatically roll back stack operations if specified CloudWatch alarms are triggered

Cross-Account and Cross-Region Management

Provision resources across multiple AWS accounts and regions using StackSets

Reduce your backlog to zero

Make CSPM findings a thing of the past. Integrate Gomboc AI and immediately get remediations pushed to your CI/CD pipeline so DevOps teams can skip the busywork. Never fall out of compliance again. Never deal with cloud misconfigurations. Get to #BacklogZero today.

Book a demo