Skip to main content

Accelerate adoption: Amazon Web Services capabilities

Manage cloud data security and cyber risk

Amazon Web Services (AWS) provides innovative services that include a broad set of public cloud capabilities. Scalability, elasticity, flexibility, and business benefits are driving adoption at a rapid pace across many industries and sectors as a major cloud technology enabler for digital transformation. As organizations adopt cloud to transform their businesses, cyber risk management should also be transformed. A strategy that leverages Deloitte’s cyber risk framework, coupled with the native services built into AWS, can help enterprises move to the cloud with confidence that cyber risks are being addressed.

Download our whitepapers

ConvergeSECURITY: Managed cloud security from Deloitte and AWS

To address the challenges and risks that come with cloud adoption, Deloitte and AWS have come together to offer ConvergeSECURITY, a comprehensive cybersecurity solution that enables end-to-end enterprise cloud transformation while enhancing security and regulatory compliance. ConvergeSECURITY leverages AI-enabled cloud security and compliance solutions, consulting expertise, and tailored resources to deliver a unified platform for 24x7x365 threat monitoring, assessment, and response. It provides the necessary tools for protecting your organization throughout its cloud journey.

Learn more

News and Press

Deloitte’s Cloud Cybersecurity Managed Services (CCMS)

As a leading cybersecurity solutions provider, Deloitte supports a comprehensive set of professional and managed security services that complement the cloud security services offered by AWS. By combining Deloitte’s cutting-edge cybersecurity capabilities and experience with AWS’s robust cloud offerings, we’re able to deliver unparalleled, end-to-end protection in the cloud. Together, Deloitte and AWS are developing cybersecurity solutions that enhance the security and compliance posture of AWS environments and provide peace of mind throughout an organization’s digital transformation.

Learn more

  • Single sign-on (SSO)
  • Adaptive multi-factor authentication (MFA)
  • Privileged access management self-service portal
  • Provisioning/deprovisioning SSO/Federation, MFA
  • Server access
  • Central governance & management
  • Role-based access control (RBAC)
  • Access review
  • AWS infrastructure vulnerability scanning
  • Managed web application firewall (WAF)
  • Distributed denial of services (DDoS) mitigation
  • Managed intrusion prevention system (IPS)/intrusion detection system (IDS)
  • Centralized management of firewall
  • Vulnerability segmentation/filtering machine image management
  • Patch management
  • Network firewall management/network policy configuration
  • Event management
  • Remote access/virtual private network
  • AWS service configuration management
  • AWS security leading practices monitoring
  • Monitor and triage security events
  • Operating system (OS)/network/platform log monitoring
  • Application firewall
  • Encryption at rest
  • Encryption in transit
  • Hardware-based key storage
  • Data loss protection
  • Key management
  • Public key infrastructure (PKI)
  • Secrets management
  • 24/7/365 incident alerting and response
  • Auto remediation
  • Threat detection enabled by artificial intelligence (AI)/machine learning (ML)
  • AWS compliance monitoring
  • Compliance control automation
  • Center for Internet Security (CIS) benchmark verification
  • System and organization controls (SOC2) security and availability
  • Risk analysis
  • Inventory reporting
  • Near real-time configuration management database updates
  • Configuration change history
  • Change impact analysis
  • Backup
  • Service catalog
  • Workflow orchestration
  • Security service and tools onboarding
  • Auto remediation
  • Dynamic/static security code scan
  • Infrastructure as code pipeline
  • Application delivery pipeline
  • Release on demand
  • Continuous integration/continuous delivery
  • Version control
  • Deployment automation
  • Code maintainability
  • Trunk-based development
  • Managed detection and response for AWS endpoints
  • Anti-virus/anti-malware
  • Threat intelligence
  • Client dashboard
  • Client onboarding
  • Client service ticket e-bonding

Have you heard about our Amazon Web Services (AWS) Control Tower Offering?

Organizations are facing several challenges related to cloud account management. This is primarily because provisioning and managing cloud accounts is tedious and nonstandardized. As a result, there can often be inconsistencies among accounts, inability to manage multi-account architectures, and difficulty identifying or remediating insecurely configured resources.Deloitte Cloud Account Management (DCAM) builds upon AWS Control Tower’s automated account provisioning and governance to help organizations address the above challenges. We embed automated continuous integration/continuous delivery (CI/CD) pipelines and broad policy enforcement into the account management life cycle to create and manage cloud accounts that are secure from the start.

Learn More

Explore and download our collection of AWS cyber risk white papers

Deloitte and AWS have co-authored a series of white papers that dive deeper into the seven cyber risk domains and other cloud security topics. Explore those currently available by clicking on the links below—and please check back as additional papers are released in the coming months.

Move toward your possible faster—with 24/7 security protection and monitoring

Discover how Deloitte’s Cyber Cloud Managed Services for Amazon Web Services (AWS) solution can help you accelerate your journey on the AWS cloud with a cloud security managed service that provides 24/7 security protection and monitoring of essential resources and enables you to develop at the speed of your innovation. As the recognized leader in Public Cloud Professionals and Managed Security Services, Deloitte’s Cyber Cloud Managed Services for AWS goes beyond what other AWS Level One Managed Security Service Providers offer with the six security domains: vulnerability management, cloud security leading practices and compliance, threat detection and response, network security, host and endpoint security, and application security.

Learn more

Deloitte’s Cyber CMS for AWS in action

Large FS organization

Automates security and reporting

Read more
Food distribution company

Integrates cloud security controls framework and automation control toolkits

Read more
Global pharmaceutical company

Cloud environment enabled by data and app migration

Read more
IT services company

Cloud managed services transformation

Read more
Public bank

Transitions to the cloud to exit on-premise data center and colocation facility

Read more
Biopharmaceutical company

Improved analysis and decision-making with streamlined, centralized environment

Read more

Ransomware resilience on Amazon Web Services: Balancing security and recovery strategies

Learn how Deloitte and Amazon Web Services (AWS) can help you design your AWS environment with ransomware resilience. With the AWS shared responsibility model illustrated in figure 1, AWS is responsible for security of the cloud, while the customer is responsible for security in the cloud.

Learn more

See how Deloitte and AWS can help you maximize your impact.

Learn more

Contact us

We'd like to hear from you.

Send us a message Send us a message

Get in touch

Aaron Brown

Aaron Brown

Partner | Deloitte & Touche LLP
+1 206 716 7457
Julie Bernard

Julie Bernard

Deloitte Risk & Financial Advisory
+1 704 227 7851
Jon Korol

Jon Korol

US Cyber & Strategic Risk Transformation Leader
+1 571 882 5090