Skip to main content

Accelerate adoption: Amazon Web Services capabilities

Manage cloud data security and cyber risk

Amazon Web Services (AWS) provides innovative services that include a broad set of public cloud capabilities. Scalability, elasticity, flexibility, and business benefits are driving adoption at a rapid pace across many industries and sectors as a major cloud technology enabler for digital transformation. As organisations adopt cloud to transform their businesses, cyber risk management should also be transformed. A strategy that leverages Deloitte’s cyber risk framework, coupled with the native services built in AWS, can help enterprises move to the cloud with confidence that cyber risks are being addressed.

Young Multiethnic Female Government Employee Uses Tablet Computer in System Control Monitoring Center. In the Background Her Coworkers at Their Workspaces with Many Displays Showing Technical Data.
Cloud computing online storage for fintech IOT computer network connectivity for devices; Shutterstock ID 722760352; purchase_order: Cloud D.com page; job: ; client: ; other:

AWS Level 1 Managed Security Service Provider (MSSP)

Deloitte’s cloud cybersecurity managed services help our clients rapidly scale security and compliance on the AWS cloud. As an AWS Level 1 Managed Security Service Provider (MSSP), we collaborated closely with AWS security specialists to develop 10 managed security service (MSS) specialisations that can be procured individually or bundled as part of our CCMS offering that can help you protect and monitor your AWS environment.

  • Single sign-on (SSO)
  • Adaptive multi-factor authentication (MFA)
  • Privileged access management self-service portal
  • Provisioning/deprovisioning SSO/Federation, MFA
  • Server access
  • Central governance & management
  • Role-based access control (RBAC)
  • Access review
  • AWS Infrastructure Vulnerability scanning
  • Managed web application firewall (WAF)
  • Distributed denial of services (DDoS) mitigation
  • Managed intrusion prevention system (IPS)/intrusion detection system (IDS)
  • Centralised management of firewall
  • Vulnerability segmentation/filtering machine image management
  • Patch management
  • Network firewall management/network policy configuration
  • Event management
  • Remote access/virtual private network
  • AWS service configuration management
  • AWS security leading practises monitoring
  • Monitor, triage security events
  • Operating system (OS)/ network/platform log monitoring
  • Application firewall
  • Encryption at rest
  • Encryption in transit
  • Hardware based key storage
  • Data loss protectionKey management
  • Public key infrastructure (PKI)
  • Secrets management
  • 24/7/365 incident alerting and response
  • Auto remediation
  • Artificial intelligence (AI)/ machine learning (ML) enabled threat detection
  • AWS compliance monitoring
  • Compliance control automation
  • Centre for internet security (CIS) benchmark verification
  • SOC2 (System and organisation controls) Security and Availability
  • Risk analysis
  • AWS resource inventory visibility
  • Inventory reporting
  • Near real-time configuration management database updates
  • Configuration change history
  • Change impact analysis
  • Backup
  • Service cataloug
  • Workflow orchestration
  • Security service and tools onboarding
  • Auto remediation
  • Dynamic/static security code scan
  • Infrastructure as code pipeline
  • Application delivery pipeline
  • Release on-demand
  • Continuous integration/continuous delivery
  • Version control
  • Deployment automation
  • Code maintainability
  • Trunk-based development
  • Managed detection and response for AWS endpoints
  • Anti-virus/anti-malware
  • Threat intelligence
  • Client dashboard
  • Client onboarding
  • Client service ticket e-bonding

Explore and download our collection

Deloitte and AWS have co-authored a series of white papers that dive deeper into the seven cyber risk domains and other cloud security topics. Explore those currently available by clicking on the links below and please check back as additional papers will be released in the coming months.

Move toward your possible faster—with 24/7 security protection and monitoring

Discover how Deloitte’s Cyber Cloud Managed Services for Amazon Web Services (AWS) solution can help you accelerate your journey on the AWS cloud with a cloud security managed service that provides 24/7 security protection and monitoring of essential resources that enables you to develop at the speed of your innovation. As the recognised leader in Public Cloud Professionals and Managed Security Services, Deloitte’s Cyber Cloud Managed Services for AWS goes beyond what other AWS Level One Managed Security Service Providers offer with the six security domains: vulnerability management, cloud security leading practises and compliance, threat detection and response, network security, host and endpoint security, and application security.

Have you heard about our Amazon Web Services (AWS) Control Tower Offering?

Organisations are facing several challenges related to Cloud account management. This is primarily because provisioning and managing Cloud accounts is tedious and non-standardised. As a result, there can often be inconsistencies among accounts, inability to manage multi-account architectures, and difficulty identifying or remediating insecurely configured resources.

Deloitte Cloud Account Management (DCAM) builds upon AWS Control Tower’s automated account provisioning and governance to help organisations address the above challenges. We embed automated Continuous Integration (CI)/Continuous Delivery (CD) pipelines and broad policy enforcement into the account management lifecycle to create and manage Cloud accounts that are secure-from-start.

Ransomware resilience on Amazon Web Services: Balancing security and recovery strategies

Deloitte and Amazon Web Services (AWS) can help you design your AWS environment with ransomware resilience. With the AWS shared responsibility model illustrated in figure 1, AWS is responsible for security of the cloud, while the customer is responsible for security in the cloud.

Explore our case studies to see Deloitte’s Cyber CMS for AWS in action

Automates security and reporting

Integrating a cloud security controls framework and automation control toolkits

Cloud environment enabled by data and app migration

Cloud managed services transformation

Transitions to the cloud to exit on-premise data centre and colocation facility

Improves analysis and decision-making with a streamlined, centralised environment