The Challenge

The customer encountered a security breach caused by inadvertently making the access and secret keys public. As a result, the customer urgently required a secure and encrypted cloud environment. They expressed a strong need to monitor all modifications, including billing information. Additionally, since the customer is currently in the midst of deploying their operations, they wish to minimise any adverse effects on the development side as much as feasible.

As the user base continues to expand, the partner found it necessary to acquire services that could effectively tackle various challenges, including Auto Scaling, rapid deployment, and a secure provisioning environment for their products. Their primary concerns revolved around data security and internal security. Given their extensive data operations and agile development practices, it was crucial for them to find a suitable solution to address the problem, particularly with regard to storing sensitive information in a public repository.

The Solution

Westcon played a crucial role in assisting and advising on data security measures for the partner. They recommended the utilisation of the AWS Web Application Firewall (WAF) to protect the data and suggested encrypting all storage using AWS Key Management Service (KMS). Moreover, Westcon aided in enhancing security for the AWS Secured Storage Solutions (S3) bucket by implementing measures such as blocking public access and establishing an S3 bucket policy with minimal privileges.

To bolster internal security, Westcon facilitated the enforcement of Multi-Factor Authentication (MFA) for all Identity Access Management (IAM) users during login. They also assessed the permissions and roles assigned to IAM users, ensuring the principle of least privilege was followed. Westcon adopted a least privilege approach when configuring IAM Roles and policies, considering not only limited resources and services but also specific instance types.
To ensure prompt notification of any state changes, email alerts were set up as a requirement. Westcon assisted in the deployment of CloudCheckr, a tool that offers the functionality to generate notifications based on predefined AWS budget limits. The customer is advised to leverage the capabilities of CloudCheckr, which allows the configuration of percentage-based thresholds aligned with the AWS usage baseline, enabling effective monitoring and control of expenses.

ID-ZEEPOS-CASE.png

The Benefit

The partner has discovered that the solutions provided effectively address all the challenges associated with data security. By leveraging AWS security services, they can fulfill their security requirements without experiencing excessive operational burdens.

Westcon have highly experienced AWS Certified Professionals who can assist you with your AWS infrastructure, and help you recommend, analyse and secure your workloads. If you have any questions or concerns about AWS cloud environment security, please do not hesitate to contact the Partner Success centre at

NZ Cloud Sales:    +64 9 477 7211              Email:  [email protected]
AU Cloud Sales:    +61 2 8412 1212              Email:  [email protected]
SG Cloud Sales:    +65 6424 0570              Email:   [email protected]
ID  Cloud Sales:    +62 21 8062 1470          Email:   [email protected]

Have an enquiry?
Contact the Partner Success Centre (PSC) Today.

All our highly experienced team members can talk you through your requirements, address your challenges and provide solutions to ensure you have a scalable, sustainable and successful cloud business.

Schedule a meeting with PSC