Many organizations are considering migrating their IT infrastructure and data to the cloud, and some have already started this process. Fox-IT can assist in various ways to make sure all potential security risks are identified and addressed.
There are many benefits to be gained from clouds solutions, but they typically come with increased security risks. Fox-IT helps clients to reap these benefits by guiding organizations in their transition towards the cloud.
Our services cover cloud security assessments, prevention and detection solutions:
1. Pentesting the cloud
Penetration testing, or pentesting, hosted systems in the cloud is usually no different from testing systems with shared hosting solutions. Penetration Testing by Fox-IT will reveal to you the risks your cloud solution is facing and will provide you actionable results to mitigate them. Our security experts are highly trained to find vulnerabilities in all types of systems and services. These vulnerabilities are then manually verified and correlated to escalate the attack from a hacker’s perspective.
Because the cloud platform is shared among multiple tenants, it is our highest priority to limit the continuity risk involved with any type of penetration test. With over a decade of experience testing production environments, our experts are able to minimize this risk, which our customers who have had their SCADA and other critical systems tested by our security experts can attest.
All parties involved must sign a waiver before a test can be performed, after which our experts can start exploring the attack surface of your systems or applications. Some large cloud providers such as Amazon Web Services (AWS) already have setup procedures to ask for permission with the click of a button.
2. Monitoring the cloud
Depending on which cloud environment is used, monitoring the security of data and systems in that environment can be a challenge. Some cloud providers offering only application access, might not provide the possibility of even accessing security-related monitoring functionality. In such cases, the customer decides whether that is an acceptable situation.
When an entire infrastructure is offered within a cloud environment, virtual security devices are sometimes available. It is not uncommon to have both firewall and proxy functionality available. The question remains if that level of security (preventive controls) is sufficient.
Fox-IT has developed a security sensor that monitors systems and data streams in a virtualized environment. Although the core functionality of this device is not different from the traditional network security sensor, its implementation will vary, depending on the virtualization platform in which it resides. The virtualized sensor reports to our Cyber Threat Management platform, in which security events are correlated.
Fox-IT understands that security is an ongoing process that should cover detection, prevention, response and intelligence. Our security specialists have a thorough understanding of these elements, gained from extensive operational experience in providing a wide variety of security services. We have a long history of incorporating threat intelligence in our way of working. This is the key characteristic throughout the services we deliver.
We track the most serious threat actors and gathering and analyze threat intelligence on a 24/7 basis. Fox-IT applies its knowledge of the latest cyber threats directly in its services and uses it to design, build and validate innovative solutions that protect against both regular and advanced persistent threats. The resulting solutions are then utilized in our ongoing operations, professional services and made available to our clients. This approach has led to the development of one of the most advanced Security Operation Centers in the world.