“To sing a duet together means sharing with someone both the pleasure and the responsibility.” – Andrea Bocelli
When you move your workloads to Amazon Web Services, you unlock world-class physical security, power, cooling, global network connectivity. You don’t need to concern yourself with keeping people out of the data center, or access and background checks for staff managing the hardware. AWS takes care of many of these security aspects. In fact, many organization find that they could not achieve the level of compliance and certifications AWS has and their cloud infrastructure is more secure than their on premises one.
However, this doesn’t mean your work is done.
Your part of the responsibility is protection of the applications, operating systems, data and very importantly the configuration of the service. For instance, you are responsible for properly configuring identity and access management, security groups, your virtual network structures and more. You are responsible for the application vulnerabilities, operating system updates, secure communications, data protection and ultimately the confidentiality, integrity and availability of your workloads.
AWS provides helpful guidance at aws.amazon.com/security on the shared responsibility model and you can find more about how Trend Micro can help you meet your shared security responsibilities at aws.trendmicro.com.
To really make your workloads sing, share the security responsibility with Amazon Web Services.
Interested in learning more best practices for securing AWS workloads? Read the Gartner paper on best practices for securing AWS workloads.
If you have questions or comments, please post them below or follow me on Twitter: @justin_foster.