28. Cloud Security: AWS, Azure, and GCP
AWS, Azure, and GCP each have unique security models. This mind map provides a comprehensive comparison of security services, common misconfigs, and penetration testing techniques.
Topics Covered
- Shared responsibility model
- AWS: IAM, GuardDuty, SecurityHub, CloudTrail
- Azure: Entra ID, Defender for Cloud, Sentinel, PIM
- GCP: Security Command Center, Chronicle, Cloud Armor
- Common misconfigs: public buckets, open SGs
- CSPM: Wiz, Prisma Cloud, Prowler
- Cloud pentesting: Pacu, ROADtools, ScoutSuite
- CIS Cloud Benchmarks