Dunelm Technology’s journey into Cloud Security Posture Management (CSPM) highlights their approach to enhancing security across their cloud environments, especially AWS. CSPM tools help manage cloud security by assessing confidentiality, integrity, and availability, offering valuable recommendations. Dunelm uses multiple AWS services, including AWS Security Hub, which integrates with other AWS services for a comprehensive security view.

Despite AWS Security Hub’s strengths (e.g., infrastructure as code support and integration with AWS Organizations), its limitations in visualization, reporting, and historical analysis led Dunelm to explore alternatives like AWS QuickSight and custom-built tools. Ultimately, they leveraged CloudQuery, an open-source data integration platform, combined with Metabase for visualization, resulting in a robust CSPM stack that integrates various security findings from AWS, Auth0, GitLab, and more.

To address scale and performance, Dunelm moved to Snowflake for data warehousing and migrated CloudQuery and Metabase to AWS Elastic Container Service. Their next steps include refining their AWS security architecture and exploring AWS Security Lake.

For a more detailed breakdown of Dunelm’s CSPM implementation, check out the full post here.

Ready to get started with CloudQuery? You can download and use CloudQuery and follow along Ready to get started with CloudQuery? You can try out CloudQuery locally with our quick start guide or explore the CloudQuery Platform (currently in beta) for a more scalable solution.

Want help getting started? Join the CloudQuery community to connect with other users and experts, or message our team directly here if you have any questions.