Restricting Unauthorized Access and Achieving 77% Compliance with AWS Foundational Security Best Practices for an Oil and Gas Firm

Solutions

• Configured security groups within the client’s Amazon VPC to act as virtual firewalls, controlling inbound and outbound traffic for individual instances. 
• Implemented Network ACLs at the subnet level for an additional security layer, managing traffic for the entire subnet. 
• Enabled SSO and MFA for AWS accounts, enhancing security and protecting sensitive data and resources. 
• Managed access to AWS resources effectively with AWS IAM policies, and integrated AWS Shield with a load balancer for DDoS protection. 
• Utilized AWS KMS for efficient encryption and centralized key management across various AWS services. 
• Deployed AWS Security Hub for centralized security posture management and monitoring. 
• Implemented AWS GuardDuty for continuous threat detection across AWS accounts. 
• Enabled secure remote access to AWS resources with AWS Session Manager, reducing the attack surface. 
• Established secure communication between application components using AWS WAF, enhancing network management and resilience against cyber threats. 
• Configured AWS WAF with Custom Rules targeting various cyber threats, bolstering application resilience.