By leveraging AWS continued compliance solutions, Basefarm is able to offer compliance monitoring solutions to Ruter.
The solution consists of AWS Security Hub, AWS Inspector, AWS Config, AWS CloudTrail, Amazon CloudWatch and Amazon GuardDuty. The services will identify common security issues and potential threats, while allowing Ruter to maintain their development velocity. Security events are raised as tickets within Basefarm’s ITSM solution, allowing security incidents to be managed using Basefarm’s mature and battle tested incident management processes.
Using AWS Security Hub with the CIS AWS Foundations compliance standard, Basefarm can ensure that all of Ruter’s AWS accounts are maintained at a minimum level of security hygiene, which complies with the Centre for Internet Security’s best practices. If any element of the account configuration is discovered not to meet these standards, then a security incident is automatically raised.
Amazon GuardDuty and AWS Inspector are integrated with AWS Security Hub, which offers a single pane of glass for security insight. Additionally AWS Security Hub will flag non-compliance of rules configured in AWS Config.
AWS Inspector provides the capability to conduct vulnerability and compliance analysis for instances running in Amazon EC2, using one or more of four pre-defined rulesets.