Securing AWS Management Configurations By Combating 6 Common Threats

April 28, 2021

tripwire

There’s a common misconception that cloud providers handle security, a relic leftover from hosting providers of previous decades. The truth is, cloud providers use a shared responsibility model, leaving a lot of security up to the customer. Stories of AWS compromise are widespread, with attackers often costing organizations many thousands of dollars in damages.

Luckily, The Center for Internet Security has created the CIS Amazon Web Services Foundations benchmark policy, which provides guidance on best practice security configuration options within the AWS management console.

Let’s look at some common threats to cloud infrastructure and how the CIS policy combined with general security practices help to mitigate them.