Cloud Security
Frequently Asked Questions

General

The CIS Benchmark is a AWS standard used by security experts. It consists of configuration baselines for securely configuring a system. They allow businesses to quantify their security posture and provide a way to demonstrate their level of compliance with particular security frameworks, including the NIST Cybersecurity Framework (CSF) and the ISO 27000 series of standards, PCI DSS, HIPAA, and others. Learn more from the article “What is CIS Benchmark”

Amazon Web Services

Secrets shouldn’t be hardcoded directly in the application code. Generally, in the AWS cloud, we recommend storing secrets in the AWS Secrets Manager. If you’re looking for a cloud agnostic alternative, we can honestly recommend Hashicorp Vault. If you are using Terraform, check out our module that simplifies the secrets management for ECS containers.