Cloud Center of Excellence
Our CoE conducts ongoing research on cloud APIs, technologies, and infrastructure. This yields continual development of specialized tools and expertise that enable our teams to conduct precision assessments and share best practices including our Windows Azure Security Notes, which was co-authored with Microsoft.
Unrivaled Cloud Expertise - Security Partner to Microsoft and Amazon
Security Innovation has conducted ongoing assessments on Azure and AWS for years, helping secure their platforms, components, and plug-ins. We leverage this expertise to train teams on how to code defensively for cloud threats and identify application vulnerabilities, misconfigured technologies, and vulnerable components in cloud infrastructure.
Our Cloud Curriculum provides developers with an understanding of the cloud threats and covers “Big Data”, service and deployment models, AWS/Azure-specific secure coding best practices.
Comprising 100+ courses, our eLearning library provides coverage for all major roles, technologies and platforms. Cloud-specific courses include:
- Fundamentals of Secure Cloud Development
- Creating Secure Code - AWS Foundations
- Creating Secure Cloud Code - Azure Foundations
Cloud Security Services
Cloud Application Security Assessment
This deep technical assessment analyzes data management/encryption, service configurations, authentication & authorization components, and ways to attack network and storage models.
Cloud & Virtualization Migration Planning
We'll help you understand cloud adoption risks and recommend steps to for secure migration including establishing criteria for different classes of data and defining deployment standards.
AWS/Azure Configuration Review
This review analyzes the cloud components you’ve chosen how they’ve been implemented in your unique configuration to ensure each component is used properly, efficiently, and securely.
We have tested B2B, B2C, supply chain, and internal cloud-based applications for organizations such as Sony, HP, Symantec, Kronos, and others. Sample engagements include:
- Security requirements and design review for mission-critical application migration to the cloud
- Security analysis of cloud API gateways, middleware, multi-national infrastructure deployment, and data backup systems
- Penetration test of consumer cloud printing services
- Cloud application deployment review for an IoT Web Service