Today we’re announcing a faster way to get started with your existing AWS datasets in Amazon SageMaker Unified Studio. You can now start working with any data you have access to in a new serverless notebook with a built-in AI agent, using your existing AWS Identity and Access Management (IAM) roles and permissions. New updates …
Deploying containerized applications to production requires navigating hundreds of configuration parameters across load balancers, auto scaling policies, networking, and security groups. This overhead delays time to market and diverts focus from core application development. Today, I’m excited to announce Amazon ECS Express Mode, a new capability from Amazon Elastic Container Service (Amazon ECS) that helps …
Today, we’re announcing virtual private cloud (VPC) encryption controls, a new capability of Amazon Virtual Private Cloud (Amazon VPC) that helps you audit and enforce encryption in transit for all traffic within and across VPCs in a Region. Organizations across financial services, healthcare, government, and retail face significant operational complexity in maintaining encryption compliance across …
Your Intune policies are the backbone of how Microsoft Entra ID enforces identity-based access and device compliance. But they’re not automatically protected by Microsoft. Losing them can break Conditional Access, device trust, and compliance enforcement across your tenant. In this blog, we’ll explore what these policies actually control, why they’re so critical, and how third-party …
Why Intune Policy Backup is Essential for Microsoft Entra ID Read More »
As organizations scale, managing access permissions for storage resources becomes increasingly complex and time-consuming. As new team members join, existing staff changes roles, and new S3 buckets are created, organizations must constantly update multiple types of access policies to govern access across their S3 buckets. This challenge is especially pronounced in multi-tenant S3 environments where …
Introducing attribute-based access control for Amazon S3 general purpose buckets Read More »
When building applications that span multiple cloud providers or integrate with external services, developers face a persistent challenge: managing credentials securely. Traditional approaches require storing long-term credentials like API keys and passwords, creating security risks and operational overhead. Today, we’re announcing a new capability called AWS Identity and Access Management (IAM) outbound identity federation that customers …
Simplify access to external services using AWS IAM Outbound Identity Federation Read More »
Today, I’m excited to announce enhanced local testing capabilities for AWS Step Functions through the TestState API, our testing API. These enhancements are available through the API, so you can build automated test suites that validate your workflow definitions locally on your development machines, test error handling patterns, data transformations, and mock service integrations using …
Accelerate workflow development with enhanced local testing in AWS Step Functions Read More »
Multi-tenant applications often require strict isolation when processing tenant-specific code or data. Examples include software-as-a-service (SaaS) platforms for workflow automation or code execution where customers need to ensure that execution environments used for individual tenants or end users remain completely separate from one another. Traditionally, developers have addressed these requirements by deploying separate Lambda functions …
Amazon SageMaker Catalog, which is now built in to Amazon SageMaker, can help you collect and organize your data with the accompanying business context people need to understand it. It automatically documents assets generated by AWS Glue and Amazon Redshift, and it connects directly with Amazon Quick Sight, Amazon Simple Storage Service (Amazon S3) buckets, …
Today, we’re announcing a Controls Dedicated experience in AWS Control Tower. With this feature, you can use Amazon Web Services (AWS) managed controls without the need to set up resources you don’t need, which means you get started faster if you already have an established multi-account environment and want to use AWS Control Tower only …
AWS Control Tower introduces a Controls Dedicated experience Read More »
