You're reading from Cloud Security Handbook Effectively secure cloud environments using AWS, Azure, and GCP

Product type Paperback

Published in Apr 2025

Publisher Packt

ISBN-13 9781836200017

Length 482 pages

Edition 2nd Edition

Concepts

Cloud Security

Author (1):

Eyal Estrin

Preface

1. Part 1:Securing Infrastructure Cloud Services FREE CHAPTER

2. Chapter 1: Introduction to Cloud Security

3. Chapter 2: Securing Compute Services – Virtual Machines

4. Chapter 3: Securing Compute Services – Containers and Kubernetes

5. Chapter 4: Securing Compute Services – Serverless and FaaS

6. Chapter 5: Securing Storage Services

7. Chapter 6: Securing Networking Services – Part 1

8. Chapter 7: Securing Networking Services – Part 2

9. Chapter 8: Securing Generative AI Services

10. Part 2: Deep Dive into IAM, Auditing, and Encryption

11. Chapter 9: Effective Strategies for Implementing IAM Solutions

12. Chapter 10: Auditing and Threat Management in Cloud Environments

13. Chapter 11: Applying Encryption in Cloud Services

14. Part 3: Threat and Vendor Management

15. Chapter 12: Understanding Common Security Threats to Cloud Services

16. Chapter 13: Engaging with Cloud Providers

17. Part 4: Advanced Use of Cloud Services

18. Chapter 14: Managing Hybrid Clouds

19. Chapter 15: Managing Multi-Cloud Environments

20. Chapter 16: Implementing DevSecOps

21. Chapter 17: Security in Large-Scale Environments

22. Index

23. Other Books You May Enjoy

Best practices for auditing and security monitoring in GenAI services

Auditing is a crucial part of data protection.

There are many topics to review when talking about auditing and monitoring in GenAI services. Here are two of them:

User’s activity logs: To identify abuse attempts against a GenAI service (such as attempts to exfiltrate data from a model)
GenAI admin activity: To detect rogue admin activity (such as disabling guardrails, which may result in customers receiving harmful content as a response from a model)

Follow the best practices here for auditing and monitoring in GenAI services:

Although admin activity is automatically audited by the CSPs, its log history is limited. As best practice, send all audit and monitoring logs to central storage for further analysis, for incident response, and to comply with various regulations.
Add threat detection solutions to review the logs and generate prioritized follow-up actions.