Sign in

Sign in

or

Create a new account

Categories

What is AWS Marketplace Procurement Governance and Entitlement Cost Management How to Sell

Infrastructure Software Backup & Recovery Data Analytics High Performance Computing Migration Network Infrastructure Operating Systems Security Storage

DevOps Agile Lifecycle Management Application Development Application Servers Application Stacks Continuous Integration and Continuous Delivery Infrastructure as Code Issue & Bug Tracking Monitoring Log Analysis Source Control Testing

Business Applications Blockchain Collaboration & Productivity Contact Center Content Management CRM eCommerce eLearning Human Resources IT Business Management Project Management

Machine Learning Human Review Services ML Solutions Data Labeling Services Computer Vision Natural Language Processing Speech Recognition Text Image Video Audio Structured Intelligent Automation Generative AI

Data Products Financial Services Data Healthcare & Life Sciences Data Media & Entertainment Data Telecommunications Data Gaming Data Automotive Data Manufacturing Data Resources Data Retail, Location & Marketing Data Public Sector Data Environmental Data

IoT Analytics Applications Device Connectivity Device Management Device Security Industrial IoT Smart Home & City

Professional Services Assessments Implementation Managed Services Premium Support Training

Industries Education & Research Financial Services Healthcare & Life Sciences Media & Entertainment Industrial Energy Automotive

Cloud Operations Cloud Governance Cloud Financial Management

Delivery Methods Amazon Machine Image Amazon SageMaker AWS Data Exchange CloudFormation Stack Container Image Helm Chart Add-on for Amazon EKS Private Image Build Professional Services SaaS

Solutions AWS Well-Architected Business Applications CloudOps Data & Analytics Data Products DevOps Generative AI Infrastructure Software Internet of Things Machine Learning Migration Security

Industry ??industrySolutions.dropdown.advertising_and_marketing_en??Energy ??industrySolutions.dropdown.engineering_construction_and_real_estate_en??Financial Services Healthcare & Life Industrial ??industrySolutions.dropdown.life_sciences_en??Media & Entertainment Nonprofit ??industrySolutions.dropdown.power_and_utility_en??Public Health Public Sector ??industrySolutions.dropdown.retail_en????industrySolutions.dropdown.sustainability_en??Telecommunications

AWS Service Integrations AWS Control Tower AWS PrivateLink Pre-trained Amazon SageMaker Models

AWS IQ Websites & Mobile Applications Databases & Analytics Networking & Security Machine Learning Productivity & Collaboration Cost Optimization Other

Resources Analyst Reports Blogs Customer Success Stories Events Implementation Guides Videos Webinars Whitepapers

Your Saved List

Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

ProServ

Security Baseline

By: binbash

Sets essential controls for secure AWS projects, integrating compliance, secure defaults, audit tools, and monitoring across accounts. While aligning with best practices, it offers flexibility for specific regulation conformance post-implementation.

Overview

AWS Security Baseline is a set of controls that create a minimum foundation for projects to build securely on AWS without decreasing their agility. It integrates with existing accounts that host and maintain your project’s runtime platform workloads and services. These controls form the basis of your security posture and are focused on:

Security & Compliance: Establish a security baseline for each account.
Secure Defaults: All accounts are configured with safe baselines, including mandatory MFA, encrypted EBS by default, and secure S3 bucket policies.
AWS Security Audit: Enable Cloudwatch alerts for all AWS Cloudtrail monitored services, centralizing audit operations.
IAM Access Analyzer: Identifies shared resources and potential security risks.
VPC Flow Logs: Enabled for all accounts with a VPC.
AWS Security Compliance: Use AWS Config for inventory, configuration history, and compliance-as-code framework. Additionally, AWS Inspector provides automated security assessments.
AWS Security Monitoring: Amazon GuardDuty offers threat detection across all AWS accounts, while AWS Security Hub provides a comprehensive view of high-priority security alerts.
Encryption Keys: AWS KMS CMKs are created for services requiring encryption, ensuring lifecycle management and permission control.

Sold by	binbash
Categories	Security Implementation Managed Services
Fulfillment method	Professional Services

While the AWS Security Baseline favors best practices aligned with CIS AWS Foundations Benchmark standards, SOC2 , HIPAA and ISO 27001 conformance rules, it won't strictly adhere to any specific compliance framework during this phase. It's recommended to review and audit for specific regulation conformance after workloads are operational.
The design presented in this document is inspired by several official AWS official recommendations such as: Establishing your best practice AWS environment - Amazon Web Services, AWS Well-Architected - Build secure, efficient cloud applications, and The AWS Security Reference Architecture - AWS Prescriptive Guidance.

Security Baseline Information

Pricing Information

Support

+1 786 2244551 info@binbash.co 8250 West Flagler St Miami, FL 33144, US