Cloud Security Configuration Assessment

What is a Cloud Security Configuration Review?


With the cloud being a common entity in the world today, a lot of users believe that the cloud provider is responsible for maintaining the cloud tenant's security obligations from end-to-end. However, this is often not the case, and cloud tenants have a responsibility to maintain their own security posture by configuring their cloud services to conform with security best practices.

Our Cloud Security Configuration Review aims to get your cloud tenancy up to scratch and aligned with the cloud provider’s security best practice standards across areas such as authentication, data classification and privacy, and threat management, in conjunction with meeting the client’s own security and compliance obligations.

We will assess your AWS or Azure tenancy against industry-leading benchmarks such as the Center for Internet Security (CIS) foundations benchmark, so you can be sure that your environment will be scrutinised to the highest degree to ensure you have the strongest security posture.


Did You Know?

  • Cloud tenants are required to look after a variety of security configuration options themselves.

  • Cloud solutions present a different of data governance and compliance requirements, as these services are managed and maintained by a third-party.

  • Through 2022, at least 95% of cloud security failures are predicted to be the cloud tenant’s fault.

  • An average of 51% of organizations publicly exposed at least one cloud storage service.

Why Choose BlackBug?


BlackBug consultants are highly experienced in both Amazon and Microsoft cloud platforms. At each step of the assessment, our consultants will assess the configuration in the context of your business requirements, offering solutions that are tailored to your security and compliance needs.

Our Cloud Security Configuration Review will look at problematic security areas such as:

  • Determining the extent to which a user may be able to obtain unauthorised access.
  • Assessing secure storage and access methods, including encryption in transit and at rest.
  • Ensuring that there is adequate redundancy of data should an incident occur
  • Assessing network ingress and egress rules to limit the exfiltration of sensitive information
  • Assessing the frequency of data backups to ensure that your critical information can be retrieved when needed