O'Reilly logo

Automating Security in the Cloud by Ted Steffan, Tim Sandage

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 4 – Cloud Computing Foundational Security Leading Practices 

The key to a secure cloud computing deployment is ensuring your deployment star with a secure foundation.  The foundational cloud security configuration and setting should be followed with any cloud computing deployment whether regulated or not.  An example of a secure foundation of security practices is the Amazon Web Services (AWS) CIS AWS Foundation benchmark which we partnered with Center for Internet Security (CIS) to create a consensus based leading practice for foundational, testable, and architecture agnostic settings for anyone deploying services in the cloud. These benchmarks are a basic leading standard for securely configuring traditional IT components. The CIS Benchmarks cover AWS Identity and Access Management (IAM), AWS Config, AWS CloudTrail, AWS CloudWatch, AWS Simple Notification Service (SNS), AWS Simple Storage Serve (S3), and AWS VPC (Default). Other cloud providers also provide some Best Practice documentation such as Azure Network Security Best Practices which suggest a build or migrate approaches to a cloud provider.

The reason we like the CIS benchmarks is they are consensus based meaning several organization and actual hands on practitioners and solutions providers helped create these leading practice guide in an effort to remove the guesswork for security professionals: You no longer have to guess what is the best approach towards foundational security measures within your cloud computing ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required