Published on: 15th August 2022
Cloud Comrade Provides Manage Services and Managed Security Services 24×7
The Agency has a platform that enriches the innovation ecosystem by fostering broad-based engagements among enterprises. Enterprises can network, learn & collaborate to develop unique commercial solutions and explore new business opportunities.Being in a highly regulated industry, our customers’ primary requirement is to have their IT infrastructure mandated in such a way, their entire cloud resources abide by the guidelines dictated by industry regulations. Hence it is always very crucial for our customer to be continuously compliant and maintain non-vulnerable Cloud assets.
24×7 Support for AWS Cloud through CCMS to effectively manage business
Cloud Comrade Managed Services (CCMS) helps the customer adopt AWS at scale and operate more efficiently and securely. We leverage standard AWS services and offer guidance and execution of operational best practices with specialised automations, skills, and experience that are contextual to their environment and applications. Cloud Comrade Manage Services provides proactive, preventative, and detective capabilities that raise the operational bar and help reduce risk without constraining agility, allowing customers to focus on innovation. We extend the customer team with operational capabilities including monitoring, incident detection and management, security, patch, backup, and cost optimization.
Managed Security Services
Cloud Comrade also extended Cloud Comrade Cyber Defense Services (C3DS) to the agency, having vast knowledge in AWS products and services in addition to the domain expertise we hold, helping us to understand the business challenge of our customer.
Cloud Comrade provides the following managed services and security services to the customer
1) 24×7 Monitoring using New Relic
2) 24X7 Threat Management
3) 24X7 Incident Response
4) Identity and access management
5) Data protection
6) Security logging and monitoring
7) AWS resource visibility
6) Managed detection and response for AWS endpoints
7) Virtual Machine Scanning with Auto Patching
8) Vulnerability Management
9) Backup Management
10) Incident response
11) Cost Optimization
12) Performance Optimization
13) Configuration Management
Managed Services Key Solutions
24×7 Monitoring using New Relic
In addition to the standard metrics configured for proactive monitoring and alerting, we offer next generation monitoring for critical customer workloads, which include the following additional metrics:
Application log data with specific metrics on error messages, Process and Synthetic Monitoring.
24×7 Incident Response, monitoring integrated with ITSM tool
The New Relic tool is integrated with the Zoho desk and is automatically able to create tickets based on alerts raised for different metrics.
Automated patch management and Configuration Management using InfraGuard
InfraGuard uses AWS config to fetch AWS resource list and metadata for each resource in our customer’s AWS account and uses AWS CloudTrail to fetch AWS events, events fetched from CloudTrail are correlated with the resources fetched from config and presented on InfraGuard CMDB. InfraGuard continuously scans all infrastructure assets every 15 minutes.
Patching is done using an automated mechanism built on top of AWS SSM. We use InfraGuard, at which we configure schedules to perform the scanning of packages to be installed and the actual patching activity itself.
In the automatic patching process, there are several stages, including:
Managed Security Services Key Solutions
Cloud Comrade uses security frameworks & principles such as zero trust, defence in depth & continuous threat hunting & remediation. We adopt proactive analysis to identify the risks using AWS native tools to ensure that the client environments are free from any form of threats. Our continuous compliance solutions enabled automated monitoring and reporting of non-compliant infrastructure. Cloud Comrade also provides automated patching services which is a very important component of any security plan. The automated patching service is provided on a monthly basis to fix bugs or security vulnerabilities as a continuous process.
In the security OU, by default we enable AWS native services such as
– AWS Inspector
– AWS Guarduty
– AWS config
– IAM Access Analyzer
– Trusted Advisor
– AWS KMS
– InfraGuard (continuous check on misconfig & patch management)
To perform continuous vulnerability assessment AWS Inspector is used for continuous scan on AWS workloads for vulnerabilities.
We use AWS guard duty to perform continuous threat hunting along with EventBridge to perform automated actions.
Cloud Comrade assigns a designated Security Analyst who serves as the client’s primary point of contact for reviewing the reports from Qualys and more involved technical queries of the customer.. The Security Analyst provides the client clear, consistent security consulting advice on their Vulnerability Lifecycle Management program.
Continuous Vulnerability Management
Cloud Comrade implemented vulnerability assessment using Qualys VMDR (Vulnerability Management Detection & Response) to manage customer assets by doing a host discovery and continuous vulnerability scans on external (internet facing) and internal IP based systems and networks. These scans proactively test for known vulnerabilities and the existence of mainstream industry practice security configurations so that the Cloud Comrade can proactively manage asset vulnerabilities for EC2 instances to ensure the instances continue to remain hardened.