By Reid Tatoris, Product Management Lead, Anti-DDoS at AWS
By Shawn Brady, Global Partner Lead, Edge Services at AWS
By Istvan Polay, EMEA Partner Lead, Edge Services at AWS
By Alpha Tam, APAC Partner Lead, Edge Services at AWS
Perimeter protection services from Amazon Web Services (AWS) secure customers’ applications and origin infrastructure from cyber security attacks such as Distributed Denial of Services (DDoS), SQL Injection, or Cross-Site Scripting.
AWS services operate on the Shared Responsibility Model that requires customers to assist with configuring, maintaining, and monitoring these security policies. AWS Shield Advanced provides customers with 24×7 access to the DRT for real-time response to impacting events, but some organizations lack the time and/or specialized resources to maintain this optimal application security posture.
For these customers, AWS has launched a new Perimeter Protection Managed Security Services Provider (MSSP) program that enables AWS Partners to develop and deliver a fully managed Security Operations Center (SOC) for AWS Shield Advanced, AWS WAF, and AWS Firewall Manager.
Customers who want additional help configuring, maintaining, or monitoring their application security can now work with a certified AWS Perimeter Protection MSSP Partner to fully outsource the management of their edge security.
The AWS Perimeter Protection MSSP program has launched with six certified AWS Partners:
Agilewing is an AWS Premier Consulting Partner and Managed Services Provider (MSP) dedicated to developing innovative cloud technologies. They provide enterprises with services related to cloud migration, DevOps, security, compliance, and training.
AllCloud is an AWS Premier Consulting Partner, MSP, and Security Competency Partner that accelerates innovation and helps organizations unlock the value received from cloud technology. They provide tools for cloud enablement through a unique combination of expertise and agility.
Cybercom Group is an AWS Premier Consulting Partner and MSP that helps customers utilize the AWS platform with a full lifecycle approach. The Cybercom Passionate Support for AWS package includes skilled 24/7 managed operations and local AWS support.
eCloudvalley is an AWS Premier Consulting Partner, MSP, and Security Competency Partner that evolves customers’ businesses in the cloud. Their services include migration, training, data solution, managed services, and automated cloud management platform.
Enimbos is an AWS Premier Consulting Partner and MSP offering control, optimization, and support throughout the cloud migration process for any type of business. The solutions Enimbos offers include cloud managed services, business continuity, consulting services, and DevOps solutions.
Piksel Group is an AWS Advanced Consulting Partner that services a range of clients across the broadcast and media, telecommunications, retail, transport, public sector, faith, and healthcare industries. Their subsidiaries are narrowly focused on providing the services needed by these industries.
AWS Partner Requirements
To become certified as an AWS Perimeter Protection MSSP Partner, organizations must be an AWS Partner Network (APN) Advanced or Premier Tier Partner, have an established AWS security practice, provide 24×7 support, and pass a multi-day training program with the DRT.
AWS Perimeter Protection MSSP Partners help customers define security requirements for new deployments as well as migrations from existing vendors. All partners have direct access to the DRTfor fast escalation in the case of an event.
Here’s what Lahav Savir, EVP of Cloud Platforms at AllCloud, told us about participating in the program:
“At AllCloud, as a company that’s always seeking to enhance our value to customers, we added the Perimeter Protection MSSP capabilities as an extension to our MSP operations,” says Lahav. “We proudly joined forces with the AWS Shield Advanced DDoS Response Team and created an end-to-end Perimeter-Protection-as-a-Service to help our fast-growing tech or enterprise customers to leverage AWS security services through a fully managed service.”
AWS Perimeter Protection MSSP Partners will perform the following activities for customers:
- AWS account management.
- Defining a security posture, including the applications, environments, and resources that are most critical to protect.
- Full configuration of AWS Shield Advanced and AWS WAF.
- Migration from other application security vendors.
- Implementation of AWS Best Practices for DDoS Resiliency and Guidelines for Implementing AWS WAF.
- Tuning of AWS Shield Advanced and AWS WAF to ensure optimal performance.
- Monitoring resource health by testing architecture resiliency to avoid false negatives and false positives.
- Building and maintaining customer specific runbooks.
- First line support for all application security issues.
- Escalation to the AWS DDoS Response Team (DRT) during events.
- Providing ongoing maintenance including updating IP reputation lists, troubleshooting false positives, reviewing resource monitoring resource allocation, and more.
You can also email our team at [email protected].