Leveraging AWS Trusted Advisor for Security and Compliance

2019-03-28T20:15:38
ID COALFIRE:414B2A6DC85066B28289E5FCD49E8F9F
Type coalfire
Reporter The Coalfire Blog
Modified 2019-03-28T20:15:38

Description

The benefits of undergoing mandatory or voluntary cybersecurity compliance assessments are well known throughout the cybersecurity industry. These benefits include improving the security posture of the organization, enabling sales to move faster through the sales lifecycle, addressing regulatory compliance requirements, and many more. Despite the benefits, compliance assessments can be labor intensive and painful. This pain is often due to the complexities associated with understanding the security posture of the environment being assessed as well as collecting this information in a timely and efficient manner. Amazon Web Services (AWS) offers a number of services that provide flexibility, scalability, and reliability in the cloud. AWS also offers services to assist cybersecurity professionals with understanding their security environment and demonstrating compliance to auditors to ease the pain of cybersecurity assessments. One of those services is AWS Trusted Advisor, which provides real-time best practice guidance to help provision, monitor, and maintain AWS resources. These best practice recommendations span five categories: cost optimization, performance, security, fault tolerance, and service limits.