Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Which AWS security services are needed

0

Assuming that we are using

  • EKS
  • RDS (with Proxy)
  • VPCs
  • Elasticache

What would be the recommended security services to use here? There is a large number of them and I not sure, which ones to pick.

Themen
Sicherheit, Identität & KonformitätAWS Framework mit guter Struktur
Tags
Sicherheit, Identität & KonformitätAWS Sicherheits-HubAmazon GuardDutyAmazon InspektorSicherheit
Sprache
English
rePost-User-3708451
gefragt vor 5 Monaten274 Aufrufe
4 Antworten
2

I'd recommend you always start by following the Security Pilla of the Well-Architected Framework.

https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/welcome.html

This will give you lots of best practices and which services you can use to improve security of your workloads.

The EKS Security Best Practives also will give you a lot of insights: https://aws.github.io/aws-eks-best-practices/security/docs/

Take also a look at Inspector, GuardDuty and Detective also: https://docs.aws.amazon.com/guardduty/latest/ug/kubernetes-protection.html

https://docs.aws.amazon.com/eks/latest/userguide/integration-detective.html

https://docs.aws.amazon.com/inspector/latest/user/scanning-ecr.html

And also, Security Hub to centralize and check your security posture. https://aws.amazon.com/pt/security-hub/

AWS
Cristiano_Maciel
beantwortet vor 3 Monaten
0

Here you can find a list of security services on AWS. Depending on what you want to protect and the architecture of your application, you will find a service to help you. These services are classified into:

  • Identity and access management
  • Detection and response
  • Network and application protection
  • Data protection
  • Compliance

https://aws.amazon.com/products/security/?nc=sn&loc=2

profile pictureAWS
Hernan Fernandez Retamal
beantwortet vor 5 Monaten
profile picture
EXPERTE
MaxCloud
überprüft vor 5 Monaten
  • rePost-User-3708451
    vor 5 Monaten

    @Hernan many thanks for getting back to me. I already found that page. However, I was rather thinking of a more opinionated answer of where I have to set my priorities for making everything secure.

0

Hello.

Since it's easy to get started, I think the best first step is to enable AWS Security Hub.
Although AWS Security Hub is not a service you use to protect your services, it can help you identify configurations that do not follow security best practices for the services you use in your AWS account.
https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html

For example, with EKS, you can check whether it is set to not be accessible to the public.
https://docs.aws.amazon.com/securityhub/latest/userguide/eks-controls.html

Based on these inspection results, you can review your settings and use AWS more securely.

profile picture
EXPERTE
Riku_Kobayashi
beantwortet vor 5 Monaten
0

Depends on what your app is trying to achieve, but I d recommend:

profile picture
EXPERTE
Antonio_Lagrotteria
beantwortet vor 5 Monaten

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt