Operational Complexity: The Biggest Security Threat to Your AWS Environment

February 8, 2017 |
Operational Complexity: The Biggest Security Threat to Your AWS Environment

Managing tightly-controlled user access in AWS is too complex and leads to errors and sloppiness. There are six main reasons for this:

1. User access is IP-centric, and users’ IP addresses change
2. Dynamic environments cause extra administrative burdens
3. Complexity leads to shortcuts
4. Forced use of VPN connectivity to manage access control
5. Logging correlation complexities
6. AWS shared responsibility model adherence

AWS makes it clear that security is a shared responsibility. While AWS is responsible for security ‘of’ the cloud, you’re responsible for what’s ‘in’ the cloud. So we turn to AWS Security Groups, but they introduce operational complexity with negative consequences.

In our new eBook, Operational Complexity: The Biggest Security Threat to Your AWS Environment, we discuss some of the challenges with either wide-open access or tightly-controlled access in AWS. Both have consequences, so what do you do?

Here’s an example of one those challenges: Four users access the Amazon environment from a known source. Their public IP address is the known source. The security groups are configured appropriately. The challenge is when users try to access from other locations.

You can learn what new security model overcomes this challenge inside the eBook.

Check out the eBook to learn more about what changes you’ll need to make with your AWS security moving forward.

Operational Complexity: The Biggest Security Threat to Your AWS Enviornment from Cryptzone

Back to Blog Home

Paul Campaniello

Paul Campaniello is the Chief Marketing Officer for Cryptzone where he is responsible for worldwide marketing strategy, execution and sales support. Paul has over 25 years of experience with software startup companies.

He has held several senior marketing and sales positions including CMO/VP of Marketing at ScaleBase, Mendix, Lumigent, ComBrio and Savantis. Prior to Savantis, he was at Precise Software, where he helped build Precise from a startup to $100 million prior to going public and being acquired by VERITAS for $640 million.

Paul holds both a BS and an MBA from Bentley University.

Comments are closed here.