A guide to creating PCI DSS Compliant Infrastructure in AWS

PCI DSS or Payment Card Industry Data Security Standard is a proprietary information security standard administered by the Payment Card Industry (PCI) Security Standards Council. It applies to everything within the cardholder data environment (CDE) including technologies, people, and processes. For any organization that stores, processes or transmits cardholder data (CHD) or sensitive authentication data[…]

Automate your compliance using AWS Security Hub

About AWS Security Hub AWS Security Hub provides a consolidated view of the security status of your Amazon Web Services (AWS) account. With AWS Security Hub, you can automate security checks, manage security findings, and identify the highest priority security issues across your entire AWS environment. This enables your auditors or security team to solve[…]

CVE Scan using AWS Inspector

About AWS Inspector AWS Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities and deviations from best practices. After performing an assessment, it produces a detailed list of security findings prioritized by level of severity. These findings[…]

Threat Management Using AWS GuardDuty

About AWS GuardDuty Amazon GuardDuty is a regional-based, intelligent threat detection service that allows users to monitor their AWS accounts for unusual and unintended behaviors by analyzing AWS CloudTrail event logs, VPC flow logs and DNS logs. It then uses the data from these logs and evaluates them against multiple security incidents and threat detection[…]

Enabling AWS Config

About AWS Config AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes how the resources are related to one another and how they were configured in the past, so that you can see how the configurations and relationships change over time and also track the changes.[…]

Simplify your AWS Account Audit using AWS CloudTrail

About AWS CloudTrail CloudTrail provides a comprehensive event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This enables governance, compliance, operational auditing, and risk auditing of your AWS account. Enabling CloudTrail AWS CloudTrail is now enabled by default for ALL CUSTOMERS and[…]