Background
Our client is a global consulting firm that works with clients across different industries to solve business problems. To deliver solutions to their clients, consultants across the organization's various business units often utilize cloud services through AWS or Microsoft Azure.
Challenge
Prior to our work with this client, the consultancy had created best practices and security guidelines for using AWS and Azure, but had no assurances that those practices were being properly adhered to. If the firm wanted to verify that their security protocols were being followed, they would have to conduct manual checks that were time-consuming, caused delays in verification, and had the potential for human error due to the manual nature of the checks.
Knowing the devastating impacts that a data breach would have on their business, the organization sought to build an in-house cloud security governance tool that would automate their security auditing process and keep them safe from cybersecurity threats.
Solution
Keyrus worked with the firm to build an in-house cloud security solution that would automate their verification processes. Using AWS Lambda functions, Keyrus created a solution that was cost-effective, easily scalable, and able to continuously perform checks that were previously conducted manually. The AWS-based solution scanned AWS and Microsoft Azure environments every 24 hours to ensure that security best practices were being followed.
Results
This initiative kept the firm safe from cyber attacks and clear of any data breaches. The initiative produced the following results:
AWS
Deployment to 150 AWS accounts
Resolution of over 10,000 AWS public internet exposure issues
Resolution of over 43,000 total issues (including both public-facing internet issues and non-public issues)
Azure
Deployment to 66 Azure accounts
Resolution of over 8,000 Azure public internet exposure issues
Resolution of over 17,000 total issues (including both public-facing internet issues and non-public issues)