Skip to main content

Accelerate adoption: Amazon Web Services capabilities

Quick links

Manage cloud data security and cyber risk

Amazon Web Services (AWS) provides innovative services that include a broad set of public cloud capabilities. Scalability, elasticity, flexibility, and business benefits are driving adoption at a rapid pace across many industries and sectors as a major cloud technology enabler for digital transformation. As organizations adopt cloud to transform their businesses, cyber risk management should also be transformed. A strategy that leverages Deloitte’s cyber risk framework, coupled with the native services built in AWS, can help enterprises move to the cloud with confidence that cyber risks are being addressed.

Young Multiethnic Female Government Employee Uses Tablet Computer in System Control Monitoring Center. In the Background Her Coworkers at Their Workspaces with Many Displays Showing Technical Data.
Cloud computing online storage for fintech IOT computer network connectivity for devices; Shutterstock ID 722760352; purchase_order: Cloud D.com page; job: ; client: ; other:

AWS Level 1 Managed Security Service Provider (MSSP)

Deloitte’s cloud cybersecurity managed services help our clients rapidly scale security and compliance on the AWS cloud. As an AWS Level 1 Managed Security Service Provider (MSSP), we collaborated closely with AWS security specialists to develop 10 managed security service (MSS) specializations that can be procured individually or bundled as part of our CCMS offering that can help you protect and monitor your AWS environment.

  • Single sign-on (SSO)
  • Adaptive multi-factor authentication (MFA)
  • Privileged access management self-service portal
  • Provisioning/deprovisioning SSO/Federation, MFA
  • Server access
  • Central governance & management
  • Role-based access control (RBAC)
  • Access review
  • AWS Infrastructure Vulnerability scanning
  • Managed web application firewall (WAF)
  • Distributed denial of services (DDoS) mitigation
  • Managed intrusion prevention system (IPS)/intrusion detection system (IDS)
  • Centralized management of firewall
  • Vulnerability segmentation/filtering machine image management
  • Patch management
  • Network firewall management/network policy configuration
  • Event management
  • Remote access/virtual private network
  • AWS service configuration management
  • AWS security leading practices monitoring
  • Monitor, triage security events
  • Operating system (OS)/ network/platform log monitoring
  • Application firewall
  • Encryption at rest
  • Encryption in transit
  • Hardware based key storage
  • Data loss protectionKey management
  • Public key infrastructure (PKI)
  • Secrets management
  • 24/7/365 incident alerting and response
  • Auto remediation
  • Artificial intelligence (AI)/ machine learning (ML) enabled threat detection
  • AWS compliance monitoring
  • Compliance control automation
  • Center for internet security (CIS) benchmark verification
  • SOC2 (System and organization controls) Security and Availability
  • Risk analysis
  • AWS resource inventory visibility
  • Inventory reporting
  • Near real-time configuration management database updates
  • Configuration change history
  • Change impact analysis
  • Backup
  • Service catalog
  • Workflow orchestration
  • Security service and tools onboarding
  • Auto remediation
  • Dynamic/static security code scan
  • Infrastructure as code pipeline
  • Application delivery pipeline
  • Release on-demand
  • Continuous integration/continuous delivery
  • Version control
  • Deployment automation
  • Code maintainability
  • Trunk-based development
  • Managed detection and response for AWS endpoints
  • Anti-virus/anti-malware
  • Threat intelligence
  • Client dashboard
  • Client onboarding
  • Client service ticket e-bonding

Explore and download our collection

Deloitte and AWS have co-authored a series of white papers that dive deeper into the seven cyber risk domains and other cloud security topics. Explore those currently available by clicking on the links below and please check back as additional papers will be released in the coming months.

Move toward your possible faster—with 24/7 security protection and monitoring

Discover how Deloitte’s Cyber Cloud Managed Services for Amazon Web Services (AWS) solution can help you accelerate your journey on the AWS cloud with a cloud security managed service that provides 24/7 security protection and monitoring of essential resources that enables you to develop at the speed of your innovation. As the recognized leader in Public Cloud Professionals and Managed Security Services, Deloitte’s Cyber Cloud Managed Services for AWS goes beyond what other AWS Level One Managed Security Service Providers offer with the six security domains: vulnerability management, cloud security leading practices and compliance, threat detection and response, network security, host and endpoint security, and application security.

Learn more

Have you heard about our Amazon Web Services (AWS) Control Tower Offering?

Organizations are facing several challenges related to Cloud account management. This is primarily because provisioning and managing Cloud accounts is tedious and non-standardized. As a result, there can often be inconsistencies among accounts, inability to manage multi-account architectures, and difficulty identifying or remediating insecurely configured resources.

Deloitte Cloud Account Management (DCAM) builds upon AWS Control Tower’s automated account provisioning and governance to help organizations address the above challenges. We embed automated Continuous Integration (CI)/Continuous Delivery (CD) pipelines and broad policy enforcement into the account management lifecycle to create and manage Cloud accounts that are secure-from-start.

Learn more

Ransomware resilience on Amazon Web Services: Balancing security and recovery strategies

Deloitte and Amazon Web Services (AWS) can help you design your AWS environment with ransomware resilience. With the AWS shared responsibility model illustrated in figure 1, AWS is responsible for security of the cloud, while the customer is responsible for security in the cloud.

Learn more

Explore our case studies to see Deloitte’s Cyber CMS for AWS in action
Large FS Organization

Automates security and reporting

Food Distribution Company

Integrating a cloud security controls framework and automation control toolkits

Global pharmaceutical company

Cloud environment enabled by data and app migration

IT services company

Cloud managed services transformation

Public bank

Transitions to the cloud to exit on-premise data center and colocation facility

Biopharmaceutical company

improves analysis and decision-making with a streamlined, centralized environment

Recommendations

Smarter Customer Experience Solutions—Contact Centers powered by Amazon Connect

In this age of many choices, customer satisfaction is more important than ever.
Alliance

Mainframe Modernization with Amazon Web Services

Build the foundation for innovation by transforming your enterprise workloads
Alliance

Cloud Migration with Amazon Web Services

Accelerate business agility through cloud services integration and migration
Alliance

AI/ML with Amazon Web Services

You’ve seen the ways cloud migration, modernized data platforms, and analytics can help you make decisions. Now it’s time to rethink your approach—by experiencing the power of an AI-fueled organization.
Alliance