Cloud Security Foundations

Make Your Cloud Journey Safe and Secure from the start.

Implementing the right foundational architecture at the beginning of your journey is a critical investment that will reap significant rewards in terms of speed and security. Onix’s CSF provides guidance for both a secured foundational starting point and for customization to match specific business needs. This helps organizations plan, design, build and manage a reliable, secure and well-governed cloud foundation to help manage risk and achieve business objectives.

Please fill out the form and one of our cloud experts will be in touch shortly. We look forward to hearing from you!

Business objectives

Discover the gaps between the current environment and the Google best practices that have been established
Implement the Google Cloud Security Foundation reviewed and approved by the Google Cybersecurity Action Team (GCAT).
Establish a secure baseline environment (landing zone)
Create automation for deploying secure workloads in Google Cloud through IaC templates in a multi-project environment
Deploy a production workload to the new landing zone
Establish confidence in their ability to monitor and maintain the integrity of their environment

Business objectives

Discover the gaps between the current environment and the Google best practices that have been established
Implement the Google Cloud Security Foundation reviewed and approved by the Google Cybersecurity Action Team (GCAT).
Establish a secure baseline environment (landing zone)
Create automation for deploying secure workloads in Google Cloud through IaC templates in a multi-project environment
Deploy a production workload to the new landing zone
Establish confidence in their ability to monitor and maintain the integrity of their environment

Focus areas

Google Cloud organization structure and policy
Authentication and authorization
Resource hierarchy and deployment
Networking (segmentation and security)
Key and secret management
Logging
Detective controls
Billing setup
Creating the guardrails for deploying secure applications
General security guidance
Third-party product security and compliance scan of the current GCP environment (up to 20 projects)

Business objectives

An enterprise security solution to address identity & access management, network security, DevSecOps, data protection, and security monitoring,
Makes it easy for organizations to enable security and lowers the adoption cost with a single solution package.
Establishes a secure baseline environment (landing zone).
Prescriptive guidance with packaged products that are aligned to Google Cloud security best practices and the Google Security Foundations Guide.
Create automation for deploying secure workloads in Google Cloud through IaC templates in a multi-project environment.
Deploy a production workload to the new landing zone.

Focus areas

Cloud-wide security posture management
Vulnerability prevention and risk mitigation
Supply chain protection
Data security
Web protection
Compliance with various control frameworks, including HIPAA, FedRamp Moderate, and NIST
Risk mitigation for intellectual property and business processes
Guardrails for deploying secure applications
Vulnerability management and threat monitoring (SCCP)
Security and compliance scan of the GCP environment (up to 20 projects) after the deployment

Our Proof of Concept Approach

SCCP Analysis

SCCP Output

Foundations Analysis

Foundations Design & Implementation

SCCP Analysis

SCCP Output

Foundations Analysis

Foundations Design & Implementation

Looking for a comprehensive solution to protect your Google Cloud platform? We’ve got you covered. Our PoC helps you configure and use Security Command Center Premium (SCCP) to identify and prioritize your most critical security issues in GCP. After SCCP reports the findings, we document custom recommendations using the vulnerability and threat information from SCCP to help you remediate the top 20 critical and high issues in your environment. Onix’s risk-based approach ensures you’re focused on the top issues to minimize risk to your business.