Public Cloud Security Assessment

 
 

Cloud Security Assessment

Analysis and assessment of the security posture in a Public Cloud environment

Improsec delivers a comprehensive independent security analysis and assessment, providing management and the IT security organization with a clear overview of the basic security controls implemented compared to vendor best practices.

Value

  • An assessment outlining the current state of the security posture in the Public Cloud solution

  • An evaluation of asset and resource security misconfigurations

  • Manage the risks associated with adoption and utilization of the Public Cloud solution

  • Ensure policies and security controls are implemented according to requirements

  • Enhance and improve security across the environment

Product

The deliverable of the analysis is a written report containing the following:

  • A non-technical section with an Executive Summary for management and decision makers

  • A technical section including detailed observations and tangible recommendations to strengthen the level of security and recommendations on how hardening can be applied

Method

The security assessment is, among other recognized resources, based on Cloud Security Alliance’s (CSA) “Security Guidance for Critical Areas of Focus in Cloud Computing” and Centre for Internet Security’s (CIS) configuration guidelines based on your specific setup and configuration of the Public Cloud environment deployed.

The assessment includes evaluation of:

  • Configuration of the Management Console / Pane

  • Identity and Access Management

  • Infrastructure and Network configuration

  • Protection of information and data in storage solutions

  • Logging, monitoring and alerting

  • Utilization and configuration of security solutions

Involvement

The delivery requires minimal involvement of your technical staff.


 
 

Download full description as PDF file