March 3, 2023
Keywords: Cloud Service Security Guidance (CSSG), Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), Wasabi Cloud, repository, cloud security
When working in the cloud, there is an unending growth of services that cloud service providers (CSPs) offer to meet their customers' various IT-related needs. These services vary from virtual machines, containers, databases, application development, firewalls, backup management, key storage, and much more. If not configured properly, each of these services can present a tremendous security risk to any organization. That is why the cloud security team has created Cloud Security Service Guidance's (CSSGs).
Each CSSG summarizes the controls that must be implemented when using the services of Amazon Web Service (AWS), Google Cloud Platform (GCP), & Microsoft Azure. The requirements provided align with Mass General Brigham enterprise policies and standards, HIPAA requirements, and other state and federal regulations.
The CSSGs also utilize best practices for each vendor cloud service provider. All of the CSSGs can be found in the following repository.
Additionally, Mass General Brigham and ERIS offer additional free and low-cost supported solutions that are on-premises and readily available. If you would like to learn more, refer to the website & server hosting webpage.