Glass Class – How to Secure Amazon Web Services (AWS)
Hi, and welcome to Glass Class. Today we're going to be talking about securing AWS. AWS, of course, referring to Amazon Web Services, the leading infrastructure as a service platform available to the enterprise today. When you try to secure AWS, there are a few key things you want to keep in mind. The first is the management console, and you can really think of the management console as the central hub for having visibility and control over your data in the platform, so you really want to make sure that you don't let any old user come in and access that console. So what you want to have is something like contextual access control whereby you can govern data access by things like job function, hierarchical level in the organization, or maybe some other custom factor that you might have in mind.
Next, custom applications. These are the apps that your organization is going to build on this AWS platform, and you want to make sure that you have the ability to proxy traffic as it comes from any device, like a personal iPhone here, into any cloud app that you might build on a platform.
Now, last but not least CSPM. That stands for cloud security posture management, and basically, AWS is a big platform that has a lot of different things that you need to configure, and it's possible that if you configure something improperly, it's going to expose the data in your organization. With CSPM, you can detect these misconfigurations and remediate automatically. Now, the good news is for all three of these things a leading CASB like Bitglass has all the functionality you need to secure AWS, so come check us out. Thanks for watching Glass Class.