Hear from Greg Cockburn, Head of Hyperscale Cloud at AC3, as he discusses the common gaps he finds in organisations security and quick tips to improve your organisations security.
Hear from Greg Cockburn, Head of Hyperscale Cloud at AC3, as he discusses the common gaps he finds in organisations security and quick tips to improve your organisations security.
"Hi, my name is Greg Cockburn, and I'm the Head of Hyperscale Cloud here at AC3.
The Security pillar of the AWS Well-Architected Framework focuses on protecting information and systems.
Key topics include: confidentiality and integrity of data, managing user permissions, and establishing controls to detect security events.
In this pillar, organisations should implement a strong identity foundation, maintain traceability, apply security at all layers, automate security best practices, protect data in transit and at rest, keep people away from data and prepare for security events.
Common gaps that we see when performing reviews include a lack of detection and a lack of understanding of stored data.
My quick tip for you; ensure you have a good understanding of the data you are storing for your customers and from a compliance perspective.
This will help you understand who should have access to the data and for what purpose.
Secondly, just like monitoring your system for performance and availability, it is key to monitor for vulnerabilities or unauthorised access.
There are several tools in AWS to help you get started, such as: Security Hub, AWS Config, and Guard Duty.
If you would like us to perform a Well-Architected Review for your organisation, reach out."