Cloud adoption has become a trend for modern enterprises. The most common application now is not a single cloud, but a multi-cloud or hybrid cloud environment. The complexity of multi-cloud environments increases the challenge of security threat protection. The shared responsibility model of cloud security means cloud users must take responsibility for managing the security of their cloud environments.
Service Overview
Based on experience in managing multiple public clouds, Guohe Digital found that traditional security testing services cannot address the challenges of cloud security threats. Therefore, we have adopted a third-party Cloud-Native Application Protection Platform (CNAPP) to launch the Cloud Security Health Check Service, which performs cloud security checks and compliance reviews for clients using different public cloud environments.
Health Check Items
We perform the following cloud checks based on Cloud Best Practices, Security Benchmarks (CIS), and compliance:
Service Process
The health check service process follows the 7 steps outlined below. Upon completion, a cloud health check report will be delivered, along with suggestions and consultations.
-
Cloud Asset Inventory
The health check begins with an inventory of cloud assets to identify idle or neglected cloud assets, preventing security gaps.
-
Improved Operational Efficiency
Security checks of multiple cloud platforms in one go simplify security management burdens and improve operational efficiency.
-
Configuration Check
Identifies services, assets, and misconfigurations in the cloud environment that may be publicly accessible or caused by human error.
-
Optimizing Security Architecture
After the health check, suggestions and consultations are provided to optimize the security architecture of the customer’s cloud environment, enhancing security defenses.