Phase 04:
Continuous Improvement

Alice&Bob.Company’s cloud security services are meant to continuously improve your overall cloud security posture. Based on the results from the workshops and experiences from phases 2 and 3, the next aspects will be addressed.

The AWS Shared Responsibility model clearly differentiates between the “security of the cloud” and the “security in the cloud”. On the one hand, AWS takes care of providing highly secure and available infrastructure of all provided infrastructure and services components. On the other hand, the customer himself is responsible for consuming these services securely.

It is obvious that security “in” the cloud affects many levels and areas. From network, server, container, operating system and firewall to software and applications, the field is wide. This is flanked by other fundamental aspects such as identity and access management (IAM) and security management and processes.

Consequently, in Phase 4 the customer can book additional cloud security services. Our managed services target very specialized and focused on different aspects of modern cloud and container architectures. Above all, these 04 Continuous Improvement services address different aspects of the AWS Shared Responsibility model:

You can choose from the above list of services according to your individual needs and book individual or multiple cloud security managed services.

Continuous Penetration Testing

Minimize the risk of application vulnerabilities by combining manual and continuously automated penetration testing for your web applications and API’s.

Cloud Security Posture Management

Keeping visibility and enforced security across public cloud accounts – probably across multiple public cloud vendors with the right tools: facilitate a managed Cloud Security Posture Management (CSPM) service by Alice&Bob.Company.

Managed Container & Serverless Security

Have you heard about Kubernetes Security Posture Management (KSPM)? Keep a clear view on your Cloud and Serverless Security with A&B’s Managed Container & Serverless Security.

Managed Perimeter Protection

Protect your publicly accessible websites, e-commerce platforms, IoT-, IIoTT-applications and other dynamic web application against abuse of bugs, vulnerabilities and Distributed Denial of Service (DDoS) attacks. The team of A&B and AWS give you a peaceful sleep. 

CI/CD Pipeline improvement

Pimp your existing CI/CD pipeline to the next level! Alice&Bob.Company continuously monitors and improves your current CI/CD pipelines.
We continuously integrate automated and scalable Cloud Security into your software development lifecycle.

Security Champions Program
Accelerate your product development while staying secure by integrating security-as-code in your software development lifecycle. A&B provides a unique “integrate&enable” approach to set up and maintain a companies Security Champions Program.
Security Chaos Engineering Program

Transfer the disruptive operational method of chaos engineering, developed initially by Netflix, to cloud security. We accompany your team(s) over the course of 12 month to establish the concepts and culture of Security Chaos Engineering (SCE).

Cloud Security Trainings

Never stop learning! The cloud never stops teaching! In Jan 2021 AWS consists of more than 199 ready to use service. 45+ of those are security related. Let us help to enable and educate you team(s) with an individual training plan over a timeframe of 6 to 24  months.

Custom Tailored Managed Service

Is there anything you need, but we haven’t covered. We are always curious and eager to learn about your requirements. And maybe, we develop a new Cloud Security Managed Service together