Amazon Web Services (AWS) is the most seasoned cloud service offering the widest portfolio in the market. The organic development of the wide offerings of the services has been pushing forward the continuous and integrated development of IT security along the de facto standards and best practices.
As AWS has got several multinational clients, national and local governments and their suppliers, the services provided should be compliant with various local, national and regional regulations, especially in the field of personal data protection.
The shared responsibility model defined in T&Cs by AWS (see the figure) defines the boundary between the Security OF the Cloud, as well as the Security IN the Cloud, the i.e. the responsibility of the service provider, and the users/clients, respectively.
AWS Identity and Access Management (IAM) is an integral part of the AWS management console, where users, groups, roles, temporary access and users with root access, all are well-known roles from operating systems, are managed. Elements that can be defined from the console
AWS IAM is a proprietary environment having simulation and testing tool for policy development in JSON. Once it is tested and validated, it can be deployed by another AWS service throughout all AWS ECS2 instances.
AWS CloudTrail, a logging, analysis, audit and forensic tool, is logging the AWS API calls. The entries, namely the API caller, time of the call, the IP address of the caller, parameters of the call and the response of the sevice, are logged for every event. These API calls in the AWS Management Console, can be arrived from AWS SDK, command line and higher level AWS services (e.g. .AWS CloudFormation).
The consistent and continuous development the standardized IT security infrastructure provides a clear set of requirements for IT professionals. That has been allowing AWS to develop standardized development programs for AWS experts with formal examinations and to define professional levels.
This framework is a considerable mitigation of operational and sourcing risks comparing to proprietary environments resulting in cost savings.
It is expertise the most important criteria to develop cloud based IT. The AWS is a uniquely efficient solution, we can help you to benefit from.
We design, deliver and operate.