Skip to content

someengineering/cloud-security-list

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 

Repository files navigation

Cloud security engineers are notoriously overworked and under-resourced. This curated list has links to tools, frameworks and resources to make their lives easier.

Threat Research

Security Vendors

Publicly listed vendors

These are vendors with publicly traded stocks. The links lead to a vendor's website, LinkedIn company page and the stock price on Yahoo! Finance.

Formerly listed

Private Vendors

Venture-funded companies

Acquisitions

Acquisitions by Vendor

Palo Alto Networks

Ordered by date (descending)

  • Talon, $825M - Dec 2023
  • Dig Security, $350M - Dec 2023
  • Zycada Networks, undisclosed - April 2023
  • Cider Security, $198M - Dec 2022
  • Expanse, $797M - Dec 2020
  • Crypsis, $228M - Sept 2020
  • Cloudgenix, $403M - April 2020
  • Sinefa, $44M - Nov 2020
  • Aporeto, $144M - Dec 2019
  • Twistlock, $378M - July 2019
  • Demisto, $474M - March 2019
  • RedLock, $158M - Oct 2018
  • Secdo, $83M - April 2018
  • Evident.io, $293M - March 2018
  • Cyvera, $178M - April 2014
  • Bridgecrew, $157M - March 2021
  • Aporeto, $144M - Dec 2019
  • Lightcyber, $103M - Feb 2017

Cisco

  • Deep Factor - August 2024
  • Isovalent - December 2023 blog post
  • Oort - July 2023 blog
  • Robust Intelligence - August 2024 blog post

Datadog

includes only security-related acquisitions Ordered by date (descending)

Tenable

Ordered by date (descending)

  • Ermetic, $265M - Sept 2023
  • Bit Discovery, $44.5M - April 2022
  • Cymptom, undisclosed - Feb 2022
  • Accurics, $160M - Sept 2021
  • FlawCheck, undisclosed - Oct 2016

Wiz

Ordered by date (descending)

  • Gem Security, undisclosed - April 2024
  • Rafft, undisclosed - December 2023

Managed Service Providers

Cloud Platforms

Native security products offered by the major cloud platforms (AWS, GCP, Azure)

GCP

AWS

Azure / Microsoft

Open Source Projects

Security Categories / Glossary

  • AI-SPM - AI Security Posture Management
  • ASPM - Application Security Posture Management
  • CAASM - Cyber Asset Attack Surface Management
  • CASB - Cloud Access Security Brokers
  • CCO - Corporate Compliance and Oversight
  • CDR - Cloud Detection and Response
  • CIEM - Cloud Infrastructure Entitlement Management
  • CNAPP - Cloud-native Application Protection Platform
  • CSPM - Cloud Security Posture Management
  • CWPP - Cloud Workload Protection Platform
  • CTEM - Continuous Threat Exposure Management
  • DSPM - Data Security Posture Management
  • EDR - Endpoint Detection and Response 
  • GRC - Governance, Risk and Compliance
  • IGA - Identity Governance Administration
  • ITDR - Identity Threat Detection and Response
  • KSPM - Kubernetes Security Posture Management
  • MDR - Managed Detection and Response
  • PAM - Privileged Access Management
  • SIEM - Security Information and Event Management
  • SOAR - Security Orchestration, Automation and Response
  • SOC - Security Operations Center
  • XDR - Extended Detection and Response
  • XSIAM - Extended Security Intelligence and Automation Management

Security Resources

  • Nextdoor CSPM Evaluation Matrix GitHub
  • Simple CSPM - GCP CSPM using Google Sheets GitHub
  • Prisma Cloud Channel Resource GitHub
  • What is eBPF? eBPF Docs
  • Building a Security Graph Application on Amazon Neptune GitHub

Security Newsletters

Security Podcasts

Security Frameworks

Cyber Insurance

Conferences

Community

Industry