Basic Tools for AWS Security
25 Security Services for AWS Customers
No matter the size of your business, the complexity of your AWS environment, or the industry you serve, you have access to all the security services that AWS provides. By using AWS, you do inherit a secure cloud platform, but as the customer, you are responsible for security within the cloud. AWS explains this aspect of the Shared Responsibility Model by saying, “Customer responsibility will be determined by the AWS Cloud services that a customer selects. This determines the amount of configuration work the customer must perform as part of their security responsibilities.”
AWS provides 25 security, identity, and compliance services –
- Identity and Access Management: AWS IAM, AWS Single Sign-On, Amazon Cognito, AWS Directory Service, AWS Resource Access Manager, AWS Organizations
- Detection: AWS Security Hub, Amazon GuardDuty, Amazon Inspector, AWS Config, AWS CloudTrail, AWS IoT Device Defender
- Infrastructure Protection: AWS Network Firewall, AWS Shield, AWS WAF, AWS Firewall Manager.
- Data Protection: Amazon Macie, AWS KMS, AWS CloudHSM, AWS Certificate Manager, AWS Secrets Manager
- Incident Response: Amazon Detective, CloudEndure Disaster Recovery
- Compliance: AWS Artifact, AWS Audit Manager
To learn more about AWS security services that can enhance the security of your environment, visit the AWS documentation on security, identity, and compliance on AWS.
The great thing about AWS is that all clients have access to the same great tools no matter their size. For example, all clients have access to AWS Config, which is used not only to manage your inventory, but also to measure your configurations against industry best standards. Clients also have access to OpsWorks and CloudFormation which can be used to make sure that your processes are repeatable and more easily audited which makes your engagement with us even more smooth.