top of page

Security Baseline
Framework

leverage Well-Architected

AWS Security Baseline is a set of controls that create a minimum foundation for projects to build securely on AWS without decreasing their agility. It integrates with existing accounts that host and maintain your project’s runtime platform workloads and services. These controls form the basis of your security posture and are focused on:

​

  1. Security & Compliance: Establish a security baseline for each account.

    1. Secure Defaults: All accounts are configured with safe baselines, including mandatory MFA, password policies, encrypted EBS by default, and secure S3 bucket policies.

    2. AWS Security Audit:

      1. Enable Cloudwatch alerts for all AWS Cloudtrail monitored services, centralizing audit operations.

      2. IAM Access Analyzer: Identifies shared resources and potential security risks.

      3. VPC Flow Logs: Enabled for all accounts with a VPC.

    3. AWS Security Compliance: Use AWS Config for inventory, configuration history, and compliance-as-code framework. Additionally, AWS Inspector provides automated security assessments.

    4. AWS Security Monitoring: Amazon GuardDuty offers threat detection across all AWS accounts, while AWS Security Hub provides a comprehensive view of high-priority security alerts.

    5. Encryption Keys: AWS KMS CMKs are created for services requiring encryption, ensuring lifecycle management and permission control.

IMPORTANT CONSIDERATION

aws catalog description

Security Base

aws catalog description

Security Audit

(CloudTrail)

aws catalog description

AWS Security Compliance

(AWS Config)

aws catalog description

AWS Security Compliance

(AWS Inspector)

aws catalog description

AWS Security Monitoring

(Amazon GuardDuty)

aws catalog description

AWS IAM
Access Analyzer

aws catalog description

Security Encryption Keys

(AWS KMS)

aws catalog description

Notifications

(AWS SNS to Slack)

aws catalog description

Security Optimization

(AWS Trusted Advisor)

Build a resilient security posture for your AWS projects.

Take the first step – complete the form and implement our Security Baseline controls today.

Thanks for submitting!

binbash

+1 786 2244551

info@binbash.co

8 The Green

#18319, Dover, DE 19901

Subscribe to Our Newsletter

Thanks for submitting!

Follow Us On:

  • LinkedIn Company Profile
  • GitHub Profile
  • Slack Channel
  • Medium Profile
  • YouTube Channel

© 2024 binbash LLC
All rights reserved

bottom of page