SECURITY in AWS

The safety is the major worry from the Amazon Web Services (AWS) forming part of one of the Pillars of the Framework of Good Architecture (Well Architecture Framework – WAF).  One of the elements that helps us understand how security and responsibility for AWS services and information works is the Shared Responsibility Map, in the he determines the responsibility of each actor:

  • AWS responsibility “Security of the Cloud”

    AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the hardware, software, networking, and facilities that run AWS Cloud services.

  • AWS responsibility “Security of the Cloud”

    AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the hardware, software, networking, and facilities that run AWS Cloud services.

Shared Responsibility Model

Amazon Security Considerations and Services

Here are some principles you should follow and some services you can use to review and improve your account security:

  • Icon-Resource/IoT/Res_Policy_48_Light

    Security policy

    Before you start using AWS services, be sure to create a strong security policy that addresses the most important security issues. This should include user identification and authentication, resource access control, user activity monitoring, data protection, and incident response.

  • Icon-Resource/Security-Identity-and-Compliance/Res_AWS-Identity-Access-Management_MFA-Token_48_Light

    Multi-authentication-Factor Authentication (MFA):

    Multi-Factor Authentication-factor (MFA) provides an additional layer of security to your AWS account. When you enable MFA authentication, you'll need to enter a security code generated by an app or a physical device, in addition to your username and password, to access your account.

  • Icon-Architecture/64/Arch_AWS-Single-Sign-On_64Created with Sketch.

    IAM

    The AWS Identity and Access Management (IAM) service allows you to granularly control access to resources in your account. By creating IAM users and assigning specific permissions to them, you can ensure that only authorized people have access to resources.

  • Icon-Architecture/64/Arch_AWS-Cloud-Trail_64Created with Sketch.

    CloudTrail

    CloudTrailis a logging service that provides detailed information about actions that take place in your AWS account. By enablingCloudTrail, you can monitor the activity of the users and detect any suspicious activity.

  • Icon-Architecture/64/Arch_Amazon-GuardDuty_64Created with Sketch.

    GuardDuty

    GuardDuty is a threat detection service that uses machine learning to analyze network traffic and user activities for potential threats. By enabling guard duty, you can quickly detect and respond to potential threats.

  • Icon-Architecture/64/Arch_Amazon-Inspector_64Created with Sketch.

    Inspector

    Inspector is an automated security assessment service that helps improve the security and compliance of your AWS account. By enabling Inspector, you can perform automatic security assessments of your resources and receive recommendations to improve the security of your account.

  • Icon-Architecture/64/Arch_AWS-Config_64Created with Sketch.

    AWS Config

    AWSConfig is a service that provides a detailed view of your AWS account resources and their configuration. By enabling AWSConfig, you can verify that your resources are securely configured and meet security requirements.

  • Icon-Resource/Security-Identity-and-Compliance/Res_AWS-Key-Management-Service_External-Key-Store_48_Light

    AWS KMS

    AWS Key Management Service(KMS) is a service that allows you to create and control access to encryption keys. By using KMS, you can encrypt your data and control access to encryption keys, which helps protect your data from potential threats.

  • Icon-Architecture/64/Arch_AWS-WAF_64

    AWS WAF

    Amazon WAF is a cloud-based firewall service that gives online applications an extra layer of security by enabling users to design their own rules that block frequent attack vectors like SQL injection and cross-site scripting (XSS) and block undesirable traffic.

  • Icon-Architecture/64/Arch_AWS-WAF_64

    AWS Certificate Manager

    AWS Certificate Manager is a service that lets you easily provision, manage, and deploy SSL/TLS certificates for use with AWS services. It automates the process of renewing certificates, and supports both public and private certificates.

To review the security of your AWS account, it is important to follow a strong security policy and use services such as IAM,CloudTrail, GuardDuty, Inspector, AWS Configand KMS to improve the security and compliance of your AWS account.

With the help of our AWS-focused security consultant, you can ensure the security of your cloud services. To protect your critical infrastructure and online data, contact us right away.

Working at Moofwd

Technical Product Manager

Role Purpose

Moofwd, Inc. has a Technical Product Manager position in Trenton, NJ and unanticipated locations throughout the U.S.

Key Accountabilities

    • Develop strategies and patterns to extend test automation for cloud applications.
    • Reduce failures and defects and improve system performance.
    • Troubleshoot issues.
    • Assist with application migrations.
    • Develop prototypes for team’s software developers.
    • Provide design recommendations in all phases of Software Development Life Cycle.
    • This position is for a roving employee who will be working in unanticipated locations throughout the United States.  The employee will have to relocate, but travel is not required from any particular location.
  •  
Preferred Experience and Qualification

Master’s degree in Computer Science, Computer Engineering, Computer Information Systems or Electrical Engineering.  Ten years of software development experience.  Relocation required.  Some experience with Blockchain, Smart Contracts, Solidity RESTful web services and AWS IAM software development required.

 

Are you Interest ?

Send resume to jobs@moofwd.com or Moofwd Inc/HR, 24 Courtside Lane, Princeton, NJ-08540