How to protect your AWS account against intruders
Today as a software engineer you have to be more mindful of security than ever. Ransomware attacks are happening all the time, in the week of the 8th of August I found the following 2 articles on tweakers.net (they are in Dutch, sorry for our English readers):
In one week, two companies got into the news because they got hacked. The impact on the company differs: sometimes the day-to-day operations are heavily disrupted, but in worse cases, user data gets stolen. No matter which size of the company you are in, you can get hit. As a software engineer, you can help your company to be more secure.
At Conveyor, we are handling metadata about jobs that our customers are running. We also host the API and WEB UI of Conveyor on the AWS cloud. We are not security experts, however, we do take security seriously. We follow best practices defined by AWS and we use tools provided by them to help us in the process.
For example, we use AWS Cloudtrail, Cloudwatch logging, VPC flow logging, etc. in order to do forensics when we are attacked.
We also use SecurityHub, GuardDuty, AWS Config,… to actively scan our AWS accounts. This way we can detect and fix security holes before they can be abused. By enabling these services in our staging environment, we can prevent them from ever landing on production.
In our upcoming webinar on AWS Security on 7th September 2022 at 12.30 CEST, we will show how you can use these services to increase your security posture on AWS and protect your cloud environment against intrusion.
Don’t forget to click on the link and register now!
