Thant Zin Phyo

Introduction Remote Help is a Microsoft cloud-based remote support tool designed for IT teams. It enables support staff (helpers) to securely connect to users’ devices (sharers) using organizational accounts via Microsoft Entra ID, ensuring secure and authenticated sessions. With Remote Help, you can leverage Intune’s role-based access control (RBAC) to define exactly who can provide support and what level of access they have. This gives organizations granular control over remote assistance, helping maintain security and compliance throughout the support process. Features Support for unenrolled devices: You can enable assistance for users on devices not enrolled in Intune. Organization sign-in: To prevent impersonations, both the helper and the person receiving support use Microsoft Entra accounts to verify their identity. Compliance warnings: If a device doesn’t meet your organization’s compliance policies, helpers will see a warning before connecting. Role-based access control (...

About the use case AWS Security Hub  is a security service that helps you manage security posture by collecting security data from AWS and third-party sources, and enabling analysis and remediation of security issues that are found. Late last year,  AWS introduced new central configuration capabilities in AWS Security Hub  in the form of Security Hub configuration policies (SHCPs). With SHCPs, we can customize many aspects of the Security Hub configuration which can be consistently applied to all members of the organization. This addresses many challenges with managing Security Hub across an organization which I experienced first hand last year. It was practically futile to build Security Hub enablement into  AWS Control Tower Account Factory for Terraform (AFT) ! As this is the new best practice, we'll be using this feature. Since it is increasingly common to establish an AWS landing zone using  AWS Control Tower , we will use the  standard account s...