What is it exactly?
AWS is an all-inclusive cloud platform that gives customers a large selection of services to choose from. It is a secure cloud service that can offer your business computing, database storage, analytics, and more!
Shared Responsibility Model
AWS has a shared responsibility model. This means that security and compliance is shared between AWS and the customer. This model can help customers by relieving them of many of the operational responsibilities that come with owning and maintaining a physical server.
What is Customer Responsibility? – “In the cloud”
In the cloud, the customer responsibility will be determined by the services that are selected. For example, a service such as Amazon Elastic Compute Cloud is categorized as Infrastructure as a Service (IaaS), this will require the customer to be responsible for security configuration, certifications and management of tasks. With an IaaS you are responsible for managing access, other operating systems (including updates and security patches), as well as any applications, software or utilities that are installed as well as the AWS-provided firewall for each occurrence. However, if the service the customer has selected is hosted by AWS then the customer is responsible for managing their own data, classification of their assets and applying proper permissions for access.
What Is AWS Responsibility? - “On the cloud”
AWS secures the tangible infrastructure and applications that if offers. This includes the Facility it is located in, the hardware, software and network that runs the service.
ISG Grizzly Shield Security Services
We take an easy three step approach to helping organizations Secure their AWS environment:
Pinpoint – Understand the level of maturity your security program has achieved and the possible gaps that may be present.
Jump Start – Develop Project plan/Roadmap for initiatives required to bring your Organization to the point where 24 X 7 monitoring can be leveraged, and data consumed by an MSP or internal staff or a combination of the two.
Monitoring, Training, and Ongoing Management – 24 X 7 monitoring and alerting based on defined SLAs.