Cloud: AWS
Responsibility: Project Delivery
1. A UK-based pharmaceutical company migrated its infrastructure to Google Cloud for better scalability and flexibility.
2. Rising concerns over data security in the pharmaceutical industry prompted the need for a thorough assessment.
3. The company required a comprehensive security evaluation to identify vulnerabilities in its cloud setup.
4. firecaat was engaged to conduct a security gap analysis.
5. The analysis focused on the company’s VPC, Cloud SQL, App Engine, and Load Balancer
1. firecaat conducted a security audit and identified critical infrastructure gaps.
2. Issues included public IP exposure, outdated VM images, default service accounts, and disabled Shielded VM in Compute Engine.
3. Cloud SQL had public/private IP assignments, outdated PostgreSQL versions, and lacked encryption.
4. Cloud Storage lacked lifecycle policies, object versioning, and CMK encryption.
5. VPC & Networking had disabled VPC Flow Logs and open firewall rules.
6. App Engine required HTTPS verification.
7. firecaat recommended mitigating risks by:
- Using private IPs
- Updating VM and Cloud SQL versions
- Replacing default service accounts
- Enabling Shielded VM
- Implementing CMKs
- Setting lifecycle policies
- Enabling object versioning
- Activating VPC Flow Logs
- Restricting firewall rules
- Verifying HTTPS in App Engine
By applying these recommendations, the pharmaceutical company significantly strengthened its security posture. Sensitive data was protected, compliance with industry regulations was ensured, and the risk of security breaches was minimized. Firecaat’s actionable recommendations helped the client enhance its Google Cloud infrastructure and overall security.
Ready To Take The Next Step In Your Digital Transformation Journey? Firecaat Is Here To Provide Tailored Solutions That Empower Your Business And Drive Growth.
Let's Get Started