--- title: "Devsecops in the AWS cloud" page_name: "DevSecOps in the AWS Cloud" type: "blog" slug: "devsecops-in-the-aws-cloud" published_at: "2016-08-03" modified_at: "2025-05-09" url: "https://www.sumologic.com/blog/devsecops-in-the-aws-cloud" canonical: "https://www.sumologic.com/blog/devsecops-in-the-aws-cloud" markdown_url: "https://www.sumologic.com/blog/devsecops-in-the-aws-cloud.md" lang: "en" excerpt: "The concept of DevSecOps in the AWS Cloud is key as well as building strong security practices directly into the fabric of your cloud workloads." taxonomy_blog_category: - "AWS" --- [ All blogs ](https://www.sumologic.com/blog "blog")[AWS](https://www.sumologic.com/blog/aws) # DevSecOps in the AWS Cloud [Mark Bloom](#blog-author-block-208) August 3, 2016 2 min read [AWS](https://www.sumologic.com/blog/aws) ##### Table of contents **Security teams need to change their approach in order to be successful in the AWS Cloud. DevSecOps in the AWS Cloud is key.** DevSecOps in the AWS Cloud Sure the controls you’re using are similar but their application is very different in a cloud environment. The same goes for how teams interact as they embrace cloud technologies and techniques. The concept of [DevOps](https://en.wikipedia.org/wiki/DevOps) is quickly becoming [DevSecOps](http://www.devsecops.org/) which is leading to strong security practices built directly into the fabric of cloud workloads. When embraced, this shift can result in a lot of positive change. **Teams Level Up** DevSecOps in the AWS Cloud With security built into the fabric of a deployment, the integration of technologies will have a direct impact on your teams. Siloed teams are ineffective. The transition to the cloud (or to a cloud mindset) is a great opportunity to break those silos down. There’s a hidden benefit that comes with the shift in team structure as well. Working hand-in-hand with other teams instead of a “gate keeper” role means that your security team is now spending more time helping the next business initiative instead of racing to put out fires all the time. Security is always better when it’s not “bolted on” and embracing this approach typically means that the overall noise of false positives and lack of context is greatly reduced. The result is a security team that’s no longer combing through log files 24/7 and other security drudge work. The shift to a DevSecOps culture lets your teams focus on the tasks they are better at. **Resiliency** The changes continue to pay off as your security team can now start to focus more on information security’s ignored little brother, “availability”. Information security has [three primary goals](https://en.wikipedia.org/wiki/Information_security#Key_concepts); confidentiality, integrity, and availability. The easy way to relate these goals is that security works to ensure that only the people you want (confidentiality) get the correct data (integrity) when they need it (availability). DevSecOps in the AWS Cloud And while we spend a lot of time worrying and talking about confidentiality and integrity, we often ignore availability typically letting other teams address this requirement. Now with the functionality available in the AWS Cloud we can actually use aspects of availability to increase our security. Leveraging features like [Amazon SNS](https://aws.amazon.com/sns/), [AWS Lambda](https://aws.amazon.com/lambda/), and [Auto Scaling](https://aws.amazon.com/autoscaling/), we can build automated response scenarios. This “continuous response” is one of the first steps to creating self-healing workloads. When you start to automate the security layer in an environment where everything is accessible via an API some very exciting possibilities open up. This cloud security blog was written by Mark Nunnikhoven, Vice-President of Cloud Research at [Trend Micro](http://www.trendmicro.com/us/enterprise/cloud-solutions/deep-security/). Mark can be reached on LinkedIn at or on Twitter [@marknca](https://twitter.com/marknca). **Learn More** For additional learning on AWS, please visit these video resources 1\. **AWS re:Invent 2015 | (DVO207) Defending Your Workloads Against the Next Zero-Day Attack** [https://www.youtube.com/watch?v=-HW\_F1-fjUU](https://www.youtube.com/watch?v=-HW_F1-fjUU) Discussion on how you can increase the security and availability of your deployment in the AWS Cloud 2\. **AWS re:Invent 2015 | (DVO206) How to Securely Scale Teams, Workloads, and Budgets** Discussion on lessons from a CISO, featuring [Jim Hoover](https://www.linkedin.com/in/jameshooverciso), CISO Infor along with [Matt Yanchyshyn](https://www.linkedin.com/in/mattgy) from AWS and [Adam Boyle](https://ca.linkedin.com/in/adamboyle) from Trend Micro. ### Article Tags - [AWS](https://www.sumologic.com/blog/aws) Mark Bloom [](https://www.sumologic.com/feed "RSS Feed")[](https://twitter.com/intent/tweet?text=DevSecOps%20in%20the%20AWS%20Cloud&url=https%3A%2F%2Fwww.sumologic.com%2Fblog%2Fdevsecops-in-the-aws-cloud "X")[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.sumologic.com%2Fblog%2Fdevsecops-in-the-aws-cloud "Facebook")[](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fwww.sumologic.com%2Fblog%2Fdevsecops-in-the-aws-cloud "Linkedin") [Previous blog CIS AWS Foundations Benchmark Monitoring with Sumo Logic](https://www.sumologic.com/blog/cis-aws-foundations-benchmark-monitoring)[Next blog Visualize and Analyze Your Auth0 Users with Sumo Logic – A Tutorial](https://www.sumologic.com/blog/visualize-analyze-auth0-users-sumo-logic) People who read this also enjoyed [ Eight best practices for a successful cloud migration strategy June 16, 2026 ](https://www.sumologic.com/blog/best-practices-for-cloud-migration-strategy)[ OCSF for Security Hub: Sumo Logic and AWS speaking the same language September 30, 2025 ](https://www.sumologic.com/blog/sumo-logic-aws-ocsf-security-hub)[ Enhance your cloud security visibility with the updated AWS CloudTrail app July 16, 2025 ](https://www.sumologic.com/blog/enhance-your-cloud-security-visibility-with-updated-aws-cloudtrail-app)[ How to create and monitor an AWS Lambda function in Java 11 April 15, 2025 ](https://www.sumologic.com/blog/how-to-write-aws-lambda-function-in-java8) [AI Instructions](https://www.sumologic.com/ai-instructions.md)