Sold by: Forward SecurityÂ
Our Cloud Security Risk Assessment (CSRA) service involves a comprehensive security risk assessment of your AWS cloud environment including detailed design review, threat modelling, and pentesting conducted by our AWS experts. Our process is standardized and repeatable, aligned with industry leading frameworks and best practices. You will receive a list of threat scenarios that describe how an attacker can comprise your system, along with controls to address each issue and risk levels to assist in prioritization of remediation efforts.
Overview
Assessing the security of your AWS environment is essential to understanding the risks facing your cloud infrastructure and platform services hosting valuable business applications and data. Our Cloud Security Risk Assessments (CSRA) involve a comprehensive process to assist in mitigating threats facing your organization.
Forward’s team of AWS experts conduct a security risk assessment including pentesting of your current environment following the process below:
- a) Discovery: understanding the security design of your AWS environment is essential to ensuring potential threats are identified during the assessment process. Our security consultants will work closely with your team to get an understanding of the AWS environment to inform our approach and identify security gaps. The security aspects of the AWS Well Architected framework are used as a basis for this design review, in addition to in-depth analysis of networking, IAM, logging & monitoring, as well as cryptographic controls. This can include hands-on design workshops and whiteboard sessions with team members.
- b) Threat modelling: based on the discovery output, threat modelling will be conducted to identify key threat scenarios specific to your application. We use the STRIDE scheme to classify threat scenarios and an enhanced DREAD model to assign the specific impact and likelihood levels to determine the risk for each identified issue, which will be reviewed with your team.
- c) Pentesting: Using CIS’s AWS Foundations Benchmark as a starting point for a set of assurance criteria, our team will build and execute test cases using manual and automated methods to verify each threat scenario and identify the actual risks to your business.
Upon completion, comprehensive reports are provided that include details of how each attack can be conducted, recommended controls, and the risk for each threat scenario to assist in remediation efforts addressing the issues that matter most aligned with your business context and AWS environment.
Highlights
- Comprehensive security risk assessment including design review, threat modelling, and pentesting
- Standardized and repeatable processed aligned with industry standards such as CIS AWS Foundations benchmark
- Delivered by a certified AWS partner with a team of subject matter experts
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Support
Vendor support
Email: info@forwardsecurity.com Phone: +1 (833) 444-8231 (Canada toll-free), +1 (888) 996-2835 (North America toll-free) Web: