AWS Security Best Practices and Compliance Check

Our Security Best practices and Compliance Check gives an instant snapshot of the security posture of your running aws infrastructure.  This allows you to assess the status of your environment against security best practices and common compliance frameworks including PCI-DSS, CIS and NIST 800-503 with a view to remediating any findings.  Each finding is prioritised, based on criticality, allowing you to remediate those that pose the most risk

View case study

Benefits:

• Gain instance visibility into your current cloud security posture
• Assess your running infrastructure against common compliance standards
• Prioritise security findings based on criticality

Our Approach:

Once we understand the scope, we will run various tools on each environment that will perform various best practice checks.   The resulting findings will then be compiled into an easy to consume user interface where you can view an overall security score for the environment. Each finding will be categorised according to its criticality and we will work with you on prioritising and aiding in remediation.

AWS Secure Platform Accelerator

Ensure foundational security in your AWS accounts.  Our secure platform accelerator will provide you with a secure AWS platform by enabling and configuring foundational AWS security services according to best practices giving you an instantly secure platform on which to run your applications.  Our accelerator provides you with the following security capabilities

• Identity and Access Management security
• Threat & Anomaly Detection
• Security Asset Management and configuration monitoring
• Data Security Protection
• Security logging
• Security compliance and event monitoring

View case study

Benefits:

• Instantly improve your security posture
• Ensures you have foundational AWS security controls, based on best practices, from which you can run your applications on
• Removes the need for you to set up and configure infrastructure security yourself

Our Approach:

We set up a multi-account AWS organisation using Control Tower with core AWS security services enabled such as CloudTrail, Config, GuardDuty, Security Hub and Macie alongside Centralised Log and Identity (IAM) services.  We configure each service based upon security best practices and ensure that any new AWS accounts are created with all of the services enabled and pre-configured

AWS Web Application Penetration Test

Are you sure that your AWS application is secure from attackers? When was the last time this was simulated?  Our AWS Web Application Penetration Test simulates a real-world cyber attack on your environment specifically targeting the application.  Our goal is to identify vulnerabilities in your system that an attacker may exploit and help you close them, thus improving the overall security posture.   Our certified experts use a mixture of techniques to perform extensive testing, based upon industry best practices such as OWASP, covering:

• Information gathering
• Configuration and deployment management
• Identity management
• Authentication
• Authorisation
• Session Management
• Data Validation

Benefits

• Improve the security posture of your application and prevent exploits
• Meet compliance requirements
• Understand inherent security weaknesses and improve future development
• Confirms the effectiveness of your security policies

Our Approach

Our testers used a wide selection of hacking tools to perform the test and complete this using a phased methodology that includes a step-by-step approach in exploiting the application, resulting in a feedback report on how to improve the system.  The phases we implement are:-  information gathering, threat modelling and vulnerability analysis, exploitation, post-exploitation, reporting and feedback.