reference deployment

Swiss Re Cyber Guardian Scanner on AWS

Enable scanning of AWS accounts for security risks.

This Quick Start deploys Swiss Re Cyber Guardian Scanner to the Amazon Web Services (AWS) Cloud. It deploys an Identity and Access Management (IAM) role with permissions for Cyber Guardian Scanner to compile telemetry data from a customer's AWS account. 

Cyber Guardian analyzes data to assess a customer's cyber-security risk in order to generate an insurance quote. It is for prospective customers who are interested in purchasing insurance through Cyber Guardian, a Swiss Re application. For more information, refer to Swiss Re.

Swiss Re Cyber Guardian logo

This Quick Start was developed by Swiss Re in collaboration with AWS. Swiss Re is an AWS Partner.

  •  What you'll build
  • This Quick Start sets up the following:

    • A resource-scanning IAM role with the following permissions:
      • External ID permissions associated with the resource-scanning role.
      • View-only permissions, a managed policy that allows Cyber Guardian Scanner to view a list of AWS resources and metadata in the AWS account across all Regions.
      • Scanning permissions, a policy that allows Cyber Guardian Scanner to run security checks on resources in the AWS account.
      • Security auditing permissions, a managed policy that allows monitoring of the AWS account for security compliance.
  •  How to deploy
  • To deploy this Quick Start, follow the steps in the deployment guide, which includes these steps. The stack takes about 5 minutes to launch.

    1. Sign in to your AWS account. If you don't have an account, sign up at 
    2. Launch the Quick Start. Before you create the stack, choose the AWS Region from the top toolbar.
    3. Test the deployment.

    Amazon may share user-deployment information with the AWS Partner that collaborated with AWS on this solution.  

  •  Cost and licenses
  • You are responsible for the cost of the AWS services and any third-party licenses used while running this Quick Start reference deployment. There is no additional cost for using the Quick Start.

    The AWS CloudFormation templates for this Quick Start include configuration parameters that you can customize. Some of these settings, such as instance type, affect the cost of deployment. For cost estimates, refer to the pricing pages for each AWS service you use. Prices are subject to change.

    Tip: After you deploy the Quick Start, create AWS Cost and Usage Reports to track costs associated with the Quick Start. These reports deliver billing metrics to an Amazon Simple Storage Service (Amazon S3) bucket in your account. They provide cost estimates based on usage throughout each month and aggregate the data at the end of the month. For more information about the report, refer to  What are AWS Cost and Usage Reports?