1300 659 575    hello@polarseven.com
  • Partners
  • About Us
  • Contact
Service Desk   Let's Talk
PolarSeven PolarSeven PolarSeven PolarSeven
  • Services
    • View all Services
      • Advisory & Consulting
      • Cloud Build, Migration & Transformation
      • DevOps & Automation
      • Cloud & Cost Optimisation
      • Security & Compliance
      • Cloud Dev & App Modernisation
      • Data, Analytics & IoT
      • Remote Working
      • Well-Architected Framework Review
      • Managed Cloud
    • Industry Solutions
      • Public Sector
      • Education
    • The PolarSeven Methodology
    • Remote Working

      Powered by AWS

  • Case Studies
  • Blogs
  • AWS Meetups
  • Resources
    • AWS Cost Optimisation eBook
PolarSeven PolarSeven
  • Services
    • View all Services
      • Advisory & Consulting
      • Cloud Build, Migration & Transformation
      • DevOps & Automation
      • Cloud & Cost Optimisation
      • Security & Compliance
      • Cloud Dev & App Modernisation
      • Data, Analytics & IoT
      • Remote Working
      • Well-Architected Framework Review
      • Managed Cloud
    • Industry Solutions
      • Public Sector
      • Education
    • The PolarSeven Methodology
    • Remote Working

      Powered by AWS

  • Case Studies
  • Blogs
  • AWS Meetups
  • Resources
    • AWS Cost Optimisation eBook
  • Sunday, 7 June 2015

Best Practices in Cloud Hosting

It is important to remember that cloud security is a shared responsibility between you and your cloud service provider. While your CSP maintains the security of the infrastructure itself, you, as the user, must maintain your application’s security within the cloud. It is critical to maintain good practices on both sides to mitigate the risk of attacks and the possible loss of data. Here are some best practices to keep in mind:

1. Encrypt your data during storage and transmission

Always use SSL for communicating with your CSP or within your own application in the cloud. On the OS level, you can also use encryption tools like BitLocker and rueCrypt.

2. Implement host-based Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)

Maintaining firewalls on your computers adds an extra layer of protection against attacks. You can also have separate security measures like log in tools or logging in to an external, central location, so that in case your system is compromised internally, you have another buffer against an attack.  You should also implement a strong password policy. This is a simple security measure but is nevertheless critical, as many systems can be broken into with brute force techniques.

Finally, you should also consider solutions provided by key security partners, such as those provided by TrendMicro and Symantec.

3. Defend your application against Layer 7 attacks

Layer 7 attacks, like SQL injection and DDoS, are directed against your application itself. To mitigate this risk, you have to consider the security of your application from the beginning, making sure that data entered into your app is verified and formatted correctly. You will also want to perform API authorization and authentication for API-based applications.

4. Stay updated with the latest security developments and patches

As security concerns are always evolving in the cloud, remember to keep your security measures up-to-date with the latest upgrades and patches. You may leverage on automated package updated services like YUM and WSUS. You should also apply updates to your installed applications, the software environment, and any languages.

Know when your CSP implements major changes in their infrastructure or policies, and how these changes affect your data.

5. Regularly review your security details

Finally, you should also do regular security reviews, rotate keys and passwords, and keep up to date with the latest security threats.

Remember, security is a shared responsibility between you and your CSP.  If you currently have ongoing security concerns in the cloud or want to learn more about best practices in cloud computing, don’t hesitate to consult our experts here in Polarseven.

[video_player type=”youtube” width=”560″ height=”315″ align=”center” margin_top=”0″ margin_bottom=”20″ border_size=”3″ border_color=”#1298e2″]aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g/dj1QYTF6VTdYNXk5QQ==[/video_player]

 

  • Facebook
  • Twitter
  • Tumblr
  • Pinterest
  • Google+
  • LinkedIn
  • E-Mail
Discover More
Read More
  • Wednesday, 23 September 2020

Hire DevOps or Utilise DevOps as a Service?

According to a recent report, the market value of DevOps will grow to US$17 billion by 2026. That means IT... read more →
Read More
  • Thursday, 13 August 2020

Five Essentials for Developing Modern Applications

Modern Applications is what we refer to cloud-native software built with today’s agility, performance and security needs in mind. It... read more →
  • Case studies
  • Services
  • Resources

Article Categories

  • Articles
  • AWS
  • AWS Industry News
  • AWS User Group
  • Cloud Computing
  • Cloud Security and Compliance
  • Containers
  • DevOps Automation
  • Miscellaneous
  • PolarSeven News
  • Remote Work
AWS Sydney User Group

Tags

Amazon AppStream 2.0 Amazon Web Services Amazon WorkSpaces application modernisation applications app modernisation AppStream AppStream 2.0 AWS aws devops AWS Spot Instances CFO Chief financial Officer cloud application security Cloud Migration cloud security Containerisation Containers continuous delivery automation DevOps devops outsourcing devops services ecs eks Fargate iaas kubernetes Landing Zones legacy applications Meetup microservices Microsoft Workloads mobile modern applications paas Polar Bear PolarSeven purpose-built databases remote work remote working saas serverless computing Session Manager User Group

Recent Articles

  • Hire DevOps or Utilise DevOps as a Service? September 23, 2020
  • Five Essentials for Developing Modern Applications August 13, 2020
  • New pricing for AWS Spot Instances July 7, 2020

PolarSeven’s vision is to be a customer centric, Amazon Web Services consultancy, where cloud computing is seen as a key enabler to our customers needs and challenges. “We help our customers achieve amazing things…..”

Links

  • Home
  • PolarSeven Methodology
  • Client Case Studies
  • Articles
  • About Us

Contact

Level 2, 13-15 Wentworth Avenue, Sydney, 2000 Phone: 1300 659 575 E-Mail: hello@polarseven.com
@2015-2021 All Rights Reserved | PolarSeven PTY LTD | Terms & Privacy Policy