Infrastructure Security

Our Process

Starting with the tools that AWS makes available to all customers, our templates take advantage of services for security, monitoring, scalability, reliability, and fault-tolerant architectures. AWS provides a number of industry-leading security and monitoring services, including GuardDuty, Control Tower, CloudWatch, Config, and Inspector. These are all powerful tools when properly configured and used in concert. We work with organizations to ensure that they have the right suite of tools, properly configured, and incorporated into all instances.

We achieve this by adhering to a strict Infrastructure as Code (IaaC) approach and treating our customer’s infrastructure components with the same rigorous testing and peer-reviewed commits that are best practice for application code. In our source controlled IaaC repository, each new change to the environment is tracked and double peer reviewed before any commit is made to the master branch.

Using Terraform as our base, Blue Sentry maintains a repository of templates that are tested, as well as, proven architecture designs that are designed for compliance with PCI, HIPAA, FedRamp, ISO, and other regulatory requirements. Each of these templates can be used as the bedrock foundation for our customers’ environments, allowing us to help you build and tweak the environment to your specific needs while maintaining best practice standards for security, reliability, cost optimization, and performance. Read about a few of cour customer successes: PCI Compliant Architecture for a SaaS company, Amazon Connect and PCI compliance and Security with CI/CD and a service oriented architecture.

As an AWS Premier Consulting Partner certified to perform Well-Architected Reviews based on the AWS Well-Architected framework, Blue Sentry has extensive experience in the identification and remediation of infrastructure shortfalls. Using this knowledge, we are able to build new customer environments correctly from the beginning. This avoids many of the problems that we see in the outside environments that we review. Using a templated, IaaC approach designed to meet or exceed AWS’s exacting standards, new environments built by Blue Sentry feature architecture that supports best practices for each of the five pillars of the Well-Architected framework: Security, Reliability, Operational Excellence, Performance Efficiency, and Cost Optimization.

In addition, Blue Sentry works with several attestation partners who assist our customers in achieving certification for all relevant regulatory platforms and regimes. We regularly help shepherd our clients through the certification and attestation process for PCI, HIPAA, ISO, and FedRamp requirements. We can also work with any compliance attestation partner the client may choose.

Blue Sentry is a TrendMicro partner able to supply, implement and manage the industry-leading security tools available in TrendMicro’s Cloud Security Suite. These tools monitor and help ensure that environmental security is maintained at the application, network, and container level; they also include intrusion prevention tools that can help customers sleep easier at night. Blue Sentry is an audited AWS Managed Service Partner. All Blue Sentry MSP customers are automatically enrolled in TrendMicro’s Cloud One Conformity tool free of charge. We work with you to ensure that your compliant environments remain compliant. Our engineers regularly provide formatted reporting for your review to ensure that all parties have a clear view of the current compliance state.

Contact Us Today to Learn More

Contact Us