How to know if your AWS environment is secure

Brett Gillett


Today, let’s talk about security — of your AWS account and cloud infrastructure. If it keeps you up at night, you’re not alone. Many business leaders struggle with the notion of audits, or the security of their account.

For instance, maybe you’re thinking about the increasing trend of cyber attacks, which have become more prominent in recent years. Many high-profile organizations have revealed network compromises that led to customer information being stolen or, at minimum, placed at serious risk.

You may wonder if your existing cloud environment is secure, and you don’t know where to start checking.

Or, you may have done a security check and received a network report, which assesses your security risks. While the reports can seem like a good idea at the time, they often output only a list of issues. That’s just the beginning. Resolving those issues—including triage, stack-ranking, and completing any pre-requisite tasks—can cause additional work cycles for your IT staff.

Of course there’s also a lot to do for the business in other areas, not just worry about your security and audits.

No wonder you’re tired.

Hand off your security concerns

Curious Orbit can help take some of the stress off your hands. Through the AWS Security Audit program, Curious Orbit looks at your account and evaluates it around a series of well documented best practices—nearly 100 of them—to identify security issues that may create exposure risks for you and your clients. We run a deep-dive, comprehensive assessment of your account and help ensure that your Amazon Web Services (AWS) environment is set up according to security best practices.

We also issue you a final report that provides a comprehensive view into how your network performs against the pillars of the AWS Well-Architected Framework. The audit program was developed using guidance from both AWS and independent organizations.

The AWS Security Audit program:

  • Includes approximately 100 checks in a standard review
  • Can turn reports typically in 1 week
  • Gives a comprehensive security overview of your AWS account.

Comprehensive AWS audit

The Curious Orbit AWS Security Audit focuses on identifying issues across the most common use cases that customers run in their AWS accounts, including compute, database, and network storage. We offer support for the following AWS services:

  • Identity and Access Management (AWS IAM)
  • AWS Organizations
  • Amazon GuardDuty
  • Amazon Virtual Private Cloud (Amazon VPC)
  • Amazon Elastic Cloud Compute (Amazon EC2)
  • Amazon Elastic Block Store (Amazon EBS)
  • Amazon Relational Database Service (Amazon RDS)
  • Amazon Simple Storage Service (Amazon S3)

What happens next

Upon completion of the AWS Security Audit, you receive a detailed report of each item audited—and, unlike other reports, ours comes with insight into possible methods of remediation.

Your audit will also include visualizations to assist you in identifying the highest-priority items to attend to—as well as the AWS services that may require your attention. These graphical representations include color-coded charts and graphs using the familiar color scheme of green/yellow/red to signify the issue priority level.

We also offer custom training and additional managed services opportunities to help ensure you get the most out of your experience with us.