Académie CloudSec

Shaked Rotlevi

juin 26, 2025

Cyber asset attack surface management (CAASM) is a security practice that gives teams unified visibility and control over all enterprise assets—cloud, SaaS, on-prem, and beyond. It helps eliminate blind spots and reduce risk by correlating asset data from across your environment and tools. CAASM enables teams to query, prioritize, and act from a single source of truth.

This article explores the NIST IR model and capabilities to look out for when choosing IR tools to support NIST SP 800-61 Rev. 2 implementation.

L’analyse des vulnérabilités est le processus de détection et d’évaluation des failles de sécurité dans les systèmes informatiques, les réseaux et les logiciels.

Malware scanning is the process of inspecting files, systems, and cloud resources for signs of malicious software—before it causes damage.

Data poisoning is a kind of cyberattack that targets the training data used to build artificial intelligence (AI) and machine learning (ML) models.

Writing your IR plan from scratch? Not sure where to begin? Get a head start with these free templates and examples.

Attack surface analysis is a cybersecurity practice that identifies and evaluates all potential access points, external and internal, that an attacker could exploit.

Let's compare on-premises and cloud security, examine their differences, and explore key cloud-specific security concepts to help you choose the best approaches to security for your entire organization.

Smart CIEM beats basic visibility. The best platforms prioritize real attack paths and provide actionable fixes, not just permission inventories.

Looking for a Wiz alternative? Learn why Wiz stands apart and when it may take multiple tools to match its coverage.

Choosing between role-based access control (RBAC) and attribute-based access control (ABAC) sets up how your cloud stack determines who may do what, where, and when. This blog post shows you the functional differences between the two models.

A base image is the foundational layer of every container—it acts like the container’s operating system (OS), providing core files, dependencies, and configurations needed to run your application.

Snegha Ramnarayanan

juin 6, 2025

DSPM solutions are essential for effective cloud data security and compliance because they continuously oversee and assess an organization’s cloud data security practices and configurations.

Code-to-cloud security protects applications across the entire software development lifecycle (SDLC), from code all the way to runtime in the cloud.

A VPC is a logically isolated private network within a public cloud that users can fully configure.

La gestion des vulnérabilités implique l’identification, la gestion et la correction continues des vulnérabilités dans les environnements informatiques, et fait partie intégrante de tout programme de sécurité.

Shaked Rotlevi

mai 31, 2025

La conformité au cloud est l’ensemble des procédures, des contrôles et des mesures organisationnelles que vous devez mettre en place pour vous assurer que vos ressources basées sur le cloud répondent aux exigences des réglementations, normes et cadres de protection des données pertinents pour votre organisation.

Data security in 2025 demands a shift from perimeter defenses to continuous, context-aware protection across cloud, SaaS, and on-prem environments.

In this guide, we’ll show you how to choose a CNAPP that cuts through complexity and gives your team a real path to security: with full-stack visibility, runtime protection, and developer-friendly workflows.

Cloud service providers offer on-demand, scalable computing resources like storage services, applications, and cloud-based compute. Using a structured checklist can help your business select a cloud provider that has the features you need to meet your security goals.

Ziad Ghalleb

mai 29, 2025

Le test de sécurité statique des applications (SAST) est une méthode permettant d’identifier les vulnérabilités de sécurité dans le code source, le bytecode ou le code binaire d’une application avant que le logiciel ne soit déployé ou exécuté. 

Compare 10 essential cloud security tool types and their key features and learn how to consolidate your security stack with CNAPP solutions for better protection.

Ziad Ghalleb

mai 23, 2025

.

Une plateforme de protection des charges de travail cloud (CWPP) est une solution de sécurité qui fournit une surveillance et une protection continues contre les menaces pour les charges de travail cloud dans différents types d'environnements cloud.