ID.AM-03.127

Does your organization maintain and document baseline communication and data flow patterns for all infrastructure-as-a-service (IaaS) environments?

Explanation

Maintaining baselines of communication and data flows helps identify abnormal patterns that could indicate security incidents or unauthorized access within your IaaS environments. These baselines should document expected network traffic patterns, data transfer volumes, API calls, and service-to-service communications across your cloud infrastructure. Evidence could include network flow diagrams, data flow documentation, baseline configuration documents, or outputs from cloud monitoring tools that show established normal patterns of communication. Cloud provider console screenshots showing configured VPC flow logs, traffic mirroring, or network monitoring tools would also serve as appropriate evidence.

Implementation Example

Maintain baselines of communication and data flows for the organization's infrastructure-as-a-service (IaaS) usage

ID: ID.AM-03.127

Context

Function
ID: IDENTIFY
Category
ID.AM: Asset Management
Sub-Category
Representations of the organization's authorized network communication and internal and external network data flows are maintained

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron