White logo ISGWhite logo ISGWhite logo ISG mobileWhite logo ISG mobile
  • Company
    • About
    • Culture
  • Services
    • R&D Consultancy
    • Global Talent Access
    • Optimized Software Development
  • Clients
  • Careers
  • Insights
  • Get In Touch
  • Company
    • About
    • Culture
  • Services
    • R&D Consultancy
    • Global Talent Access
    • Optimized Software Development
  • Clients
  • Careers
  • Insights
  • Get In Touch
✕

What does the AWS Shared Responsibility Model mean?

April 17, 2020
Categories
  • Amazon Web Services
  • AWS Security
  • Cloud Computing
  • Security
Tags
     

    Shared responsibility model indicates that AWS and the AWS Customer have a role to play in Securing the cloud. AWS is responsible for security of the cloud while the customer is responsible for security in the cloud.

     
     
    What does the AWS Shared Responsibility Model mean?
     
     

    Customer responsibility “Security in the Cloud”

    Customer responsibility will be determined by the AWS Cloud services that a customer selects. This determines the amount of configuration work the customer must perform as part of their security responsibilities. As shown in the chart above, this differentiation of responsibility is commonly referred to as Security “of” the Cloud versus Security “in” the Cloud.

     
     

    Examples of AWS and Customer Responsibilities:

    • Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications.
    • Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for managing their data (including encryption options), classifying their assets, and using IAM tools to apply the appropriate permissions.
    • Monitoring – AWS provides several security tools that the customer can purchase (or integrate existing solutions) in order to monitor their environment for malicious activity and/or identify possible vulnerabilities. The customer is responsible to monitor these tools and respond with mitigation as appropriate.
    • Awareness & Training – AWS trains AWS employees, but a customer must train their own employees.
     

    Share
    0

    Related posts

    July 20, 2020

    How to Choose the Right Security Tools?


    Read more
    July 9, 2020

    Top 5 Hacks


    Read more
    June 30, 2020

    AWS – Security Services Rundown


    Read more

    Get In Touch

    Privacy policy

    © 2020 Intent Solution Group. All Rights Reserved.

    Get Started with Security Services