The News A giant question of the 11th day of January 2021 is: should anyone trust any service with their personal data? Without wasting an ounce a milliliter on any political commentary, I’ll admit that the news regarding Parler’s shutdown is on my mind. You might not be aware that there was also a breach of data related to Twilio authentication* that has a lot of people concerned about the trust they put into the Parler service (Twitter clone for those who spared themselves any wasted time understanding the great microblog wars).

Introduction As I set up insurance for my company, I was surprised to see very detailed questions about the implementation of information security policies, standards, and procedures. Some specific controls were included as well, such as Data Loss Protection (DLP). Even though at the time I was reviewing the contract and filling out the form, I hadn’t implemented everything. So far, this is a one person company, so it didn’t seem like a priority.

December 1st, 2019 Denizen Security Incorporated was launched. We specialize in Secure Software Development Lifecycle, GRC, and Pentration Testing.

Introduction Launching the Denizen Security site, I had the goal of making the site easy to update and inexpensive to maintain. A means to make an inquiry into the services is a common feature of a marketing page. Of course, an email “contact us” form is a minimal feature for any site. However, this traditionally requires a server to capture the inputs and forward them into an email message. With the goal of at least utilizing platform-as-a-service (PaaS) rather than a more complex and expensive infrastructure-as-a-service solution, this was a chance to leverage AWS Lambda for the processing of use inputs and Simple Email Service (SES) for handling SMTP.