CLOUD SECURITY
POSTURE MANAGEMENT

why

Keeping visibility across public cloud accounts – probably across multiple public cloud vendors – is difficult. Hundreds and thousands of deployed cloud resources require an automated audit and mitigation approach.

A Cloud Security Posture Management (CSPM) delivers visibility into risk and compliance posture in modern cloud computing environments. It helps to automate cross account audits. Fix configuration errors before they get exploited! Take the Cloud Native security approach!

what

Alice&Bob.Company provides a managed CSPM solution, based upon Aqua. As a certified Aqua Sec partner and reseller, Alice&Bob.Company sets up the
environment on behalf of the clients and takes over the operational responsibility.

This, on the one hand, gives our clients free resources to improve their digital product, on the other hand generates continuous insights into their cloud deployments, also across multiple public cloud vendors.

The most relevant public cloud platforms available are supported:

  • Amazon Web Services
  • Microsoft Azure
  • Google Cloud Platform

Among others, the CSPM platform covers

  • Continuous scanning and CIS Benchmark auditing,
  • Auto-Remediation for Self-Securing Infrastructure,
  • Infrastructure-as-Code (CloudFormation and Terraform) Template Scanning,
  • Integration into SIEM and client’s collaboration tools,
  • Extensive Compliance Reporting, i.e. PCI, HIPPA, GDPR, ISO27001, ISO270017, ISO270018, NIST, Well-Architected,
  • Real-Time Control Plane Events Monitoring and
  • Extensible Open Source Architecture.
HOW

Alice&Bob.Company will setup a new instance of the Aqua platform
for the customer. This service is provided as a SaaS solution.

A&B will do all the initial configuration necessary. A&B attaches the CSPM platform read-only to client’s multiple cloud accounts. Afterwards A&B integrates into automation, set thresholds, and configure required alerting.
When the platform starts working, Alice&Bob.Company constantly maintains the CSPM platform for you. A&B tweaks and optimizes the CSPM configuration rules to minimize false positives and automate
as much as possible.

Alice&Bob.Company takes over the operational responsibility. integrates to the alert and notification chain. This also includes real-time alerting. In collaboration with the customer – and considering the concrete scope of the contract – Alice&Bob.Company can fix simple security issues themselves.

More complex security incidents are tracked and handled by Alice&Bob.Company’s Security Incident Management process.
They are resolved tandem working with the client.

The customer will get direct access to the CSPM tool and can take advantage of the detailed reporting.

This service is built upon 03 Launch services.

YOUR BENEFITS

Main advantages of performing Cloud Security Posture Management (CSPM) with A&B:

  • You take care on your product. We take care on your hybrid-cloud overall security posture. Continuously and managed.​
  • Have a systematic approach to security automation across all major cloud platforms, i.e. AWS, Azure & GCP
  • Get your compliance reporting on track and increase your overall cloud security level
  • Benefit form a strong partnership and valuable experience between Aqua Security and Alice&Bob.Company
Continuous Penetration Testing

Minimize the risk of application vulnerabilities by combining manual and continuously automated penetration testing for your web applications and API’s.

Read More
Cloud Security Trainings

Never stop learning! The cloud never stops teaching! In Jan 2021 AWS consists of more than 199 ready to use service. 45+ of those are security related. Let us help to enable and educate you team(s) with an individual training plan over a timeframe of 6 to 24  months.

Read More
Managed Container & Serverless Security

Have you heard about Kubernetes Security Posture Management (KSPM)? Keep a clear view on your Cloud and Serverless Security with A&B’s Managed Container & Serverless Security.

Read More
Managed Perimeter Protection

Protect your publicly accessible websites, e-commerce platforms, IoT-, IIoTT-applications and other dynamic web application against abuse of bugs, vulnerabilities and Distributed Denial of Service (DDoS) attacks. The team of A&B and AWS give you a peaceful sleep. 

Read More
CI/CD Pipeline improvement

Pimp your existing CI/CD pipeline to the next level! Alice&Bob.Company continuously monitors and improves your current CI/CD pipelines.
We continuously integrate automated and scalable Cloud Security into your software development lifecycle.

Read More
Security Champions Program
Accelerate your product development while staying secure by integrating security-as-code in your software development lifecycle. A&B provides a unique “integrate&enable” approach to set up and maintain a companies Security Champions Program.
Read More
Security Chaos Engineering Program

Transfer the disruptive operational method of chaos engineering, developed initially by Netflix, to cloud security. We accompany your team(s) over the course of 12 month to establish the concepts and culture of Security Chaos Engineering (SCE).

Read More
Custom Tailored Managed Service

Is there anything you need, but we haven’t covered. We are always curious and eager to learn about your requirements. And maybe, we develop a new Cloud Security Managed Service together

Let's discuss

01 health-check

AWS certified architect challenges your platform setup in a brief mutual discussion.
view more

02 warm-up

Deep dive on your individual platform, either risk or best practice based: threat mod- eling workshop, security assess- ment or well architected review.
view more

03 launch

Platform improvement due to individually defined project work (AWS Security portfolio, Shift Left, Continuous Security, Automated Auditing).
view more

04 continuous improvement

Iterative proactive managed security services or consulting solutions.
view more