Securing an expanding mesh of hybrid and cloud services adds to an already long to-do list for CISOs. Managing vulnerabilities and ensuring ongoing updates and improvements in the cloud can be daunting.
Gold Partner Enabling Technologies employs Microsoft’s latest security tools to perform a diagnostic hybrid cloud assessment, analyzing resources in:
- Azure (including VMs, Storage, SQL, Key Vaults, Kubernetes)
- On-Premises VMs
- Amazon Web Services and Google Cloud Platform (VMs, clusters, storage)
Enabling’s security team will manage a project to deploy tools, assess data, and then educate the client on the findings, which often include:
- Analysis of current threats
- Suggestions to improve posture
- Methods to reduce the attack surface
- Ways to monitor for continuous compliance (i.e. with CIS, PCI, DSS controls, etc.)
The tool used is Microsoft Defender for Cloud, specifically designed for security posture management and threat protection. Defender for Cloud (MDC) includes capabilities to:
| Continually Assess | Secure | Defend |
|
|
|
Enabling’s Security team will lead an engagement to:
- Align on current state, major risk concerns, future goals, and budget/personnel constraints
- Onboard a predefined number of services (i.e. VMs, SQL databases, containers) to MDC
- Enable the enhanced security features
- Set up email notifications
- Create auto-responses to alerts, recommendations, and regulatory guidance
- Assess environment’s posture against desired standard controls (i.e. CIS, PCI)
- Train SOC on operational best practices and CISO reporting tools
- Deliver a .ppt with tangible recommendations for improvement and to scale ongoing operations
Contact your MSFT or Enabling representative today about this workshop, which may be fundable.
