Software Architecture with BowTiedCelt

Share this post

Software Architecture with BowTiedCelt
Software Architecture with BowTiedCelt
Lambda Deep Dive Pt3 - Security
Copy link
Facebook
Email
Notes
More

Lambda Deep Dive Pt3 - Security

Security engineering in AWS Lambda.

BowTiedCelt
Jul 23, 2022
∙ Paid
2

Share this post

Software Architecture with BowTiedCelt
Software Architecture with BowTiedCelt
Lambda Deep Dive Pt3 - Security
Copy link
Facebook
Email
Notes
More
Share

hello frens, today we are looking at AWS Lambda through

the security perspective. Security is becoming a popular topic with upper management and cloud security engineer roles are abundant and *well* compensated. So it literally pays to know what is in this article.

Required Reading:

Cloud Engineering with BowTiedCelt
AWS Lambda Deep Dive Pt 1
Hello anons, avatars, cartoons, and the real ones among us. Celt here today to talk about AWS Lambda. Lambda is a very interesting service in that it provides ‘serverless’ compute. AWS has abstracted everything from the customer, except the application code, permissions, and some configurations. This greatly increases time to market for the customer, as all they really need to do is write the code, and attach the…
Read more
3 years ago · 3 likes · BowTiedCelt
Cloud Engineering with BowTiedCelt
Lambda Deep Dive Pt 2: Execution Environments
Back again to look at AWS Lambda, this time specifically the execution environment and the dreaded cold start problem. Understanding the execution environment will equip you to fully understand how Lambda actually executes the handler code. In Part 1…
Read more
3 years ago · 1 like · BowTiedCelt

AWS Lambda Security

At a high level to understand the security of Lambda lets reference the shared responsibility model for Lambda:

Source

Given that Lambda is a serverless service, the customer is responsible for a smaller amount of security. Why CTOs and CISOs love Lambda is because they do not need to manage the security with respect to the hardware, operating system, and networking infrastructure. Many companies spend millions securing, hardening, and configuring those 3 items alone. If you have worked at a large bank or secure/regulated industry like healthcare you know that to be true. In this model the customer is responsible for the actual code, resource configuration, and the identity and access management. Most important thing is to know how to secure those three customer responsibilities, but having a knowledge of how AWS keeps Lambda secure on the backend is good to know, as the number of people who know both is few.

Keep reading with a 7-day free trial

Subscribe to Software Architecture with BowTiedCelt to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
© 2025 BowTiedCelt
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More