The Nettology Solution
The client initially hired the Nettology team to do an AWS billing assessment. Nettology consultants conducted a detailed cost analysis, and uncovered a $30,000 annual savings without any up-front costs. Pleased with the results, the client re-engaged Nettology. Security concerns and several critical design issues in the environment were discovered.
After turning on logging capabilities, it was discovered that several users were logging in to the AWS console with the original admin ID and password. The Nettology team, in conjunction with Company A’s IT Director, identified the users and created unique, traceable usernames, and as well as implementing a multi-factor authentication process for accessing AWS resources. Nettology implemented Role-Based Security to ensure that access keys were not embedded in applications — which would make them available if compromised.
The Nettology team saw the presence of a VPN, but it was not being utilized. Virtually every server was available on the public internet through various ports including RDP, SSH and Microsoft infrastructure ports. Beginning with the testing and staging environments, Nettology redesigned the security on the networks and servers and ensured that the client and their Internet facing application had no downtime.