By using AWS re:Post, you agree to the AWS re:Post Terms of Use

Which AWS security services are needed

0

Assuming that we are using

  • EKS
  • RDS (with Proxy)
  • VPCs
  • Elasticache

What would be the recommended security services to use here? There is a large number of them and I not sure, which ones to pick.

4 Answers
2

I'd recommend you always start by following the Security Pilla of the Well-Architected Framework.

https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/welcome.html

This will give you lots of best practices and which services you can use to improve security of your workloads.

The EKS Security Best Practives also will give you a lot of insights: https://aws.github.io/aws-eks-best-practices/security/docs/

Take also a look at Inspector, GuardDuty and Detective also: https://docs.aws.amazon.com/guardduty/latest/ug/kubernetes-protection.html

https://docs.aws.amazon.com/eks/latest/userguide/integration-detective.html

https://docs.aws.amazon.com/inspector/latest/user/scanning-ecr.html

And also, Security Hub to centralize and check your security posture. https://aws.amazon.com/pt/security-hub/

AWS
answered 10 months ago
0

Here you can find a list of security services on AWS. Depending on what you want to protect and the architecture of your application, you will find a service to help you. These services are classified into:

  • Identity and access management
  • Detection and response
  • Network and application protection
  • Data protection
  • Compliance

https://aws.amazon.com/products/security/?nc=sn&loc=2

profile pictureAWS
answered a year ago
profile picture
EXPERT
reviewed a year ago
  • @Hernan many thanks for getting back to me. I already found that page. However, I was rather thinking of a more opinionated answer of where I have to set my priorities for making everything secure.

0

Hello.

Since it's easy to get started, I think the best first step is to enable AWS Security Hub.
Although AWS Security Hub is not a service you use to protect your services, it can help you identify configurations that do not follow security best practices for the services you use in your AWS account.
https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html

For example, with EKS, you can check whether it is set to not be accessible to the public.
https://docs.aws.amazon.com/securityhub/latest/userguide/eks-controls.html

Based on these inspection results, you can review your settings and use AWS more securely.

profile picture
EXPERT
answered a year ago
0

Depends on what your app is trying to achieve, but I d recommend:

profile picture
EXPERT
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions