Due to the numerous advantages offered by cloud-based services like Azure and AWS, many organizations have chosen to deploy their applications or platforms using these services, or migrate their existing assets to these platforms.

A common challenge is that often not all the required knowledge about Azure or AWS is sufficiently available within the organization. This can lead to confusion or uncertainty about the extent to which the established infrastructure and applications comply with best practices and minimum standards, for example, in the area of security.

nSEC/Resilience can assist with this by conducting independent security audits with experienced consultants in short-term projects.

nSEC/Resilience has developed its own control framework for this purpose, refined based on years of experience with technical security assessments on Azure, AWS and GCP. Because every environment is unique, the content and approach can be tailored to the specific needs of each organization. For example, a technical security assessment for environments using traditional components such as Azure virtual machines or AWS EC2 will look different than assessments for container-based or serverless environments. The topics and required resources for each technical cloud security assessment can be agreed upon in advance.

Some organizations use the Microsoft or Google ecosystem mainly for office automation. Services used within the Microsoft ecosystem can be for example Microsoft 365, Dynamics, Power apps or Power Automate. Within the Google ecosystem, organizations might make use of Google workspace and related applications. For these types of environments, nSEC/Resilience offers specialized security assessments as well.

For more information, please contact us for a test plan and quote without any obligations. We are also happy to create a custom proposal that will enable you to compare our quality and price with other security services providers.