D1.awsstatic.com
About QuzaraQuzara provides strategic security consulting services to Federal and commercial customers. Our AWS certified team delivers Cyber Engineering, Compliance Documentation and Managed Security services.Our Managed Security services platform, Cybertorch, provides advanced Application Security Monitoring, Detection and Response capabilities. Quzara understands AWS Security – our Vendor-Agnostic team drives Automation, Compliance and Security Architecture support critical missions for Federal and Commercial customers.The ChallengeCrowdStrike is the leader in cloud-delivered endpoint protection. Leveraging artificial intelligence (AI), the CrowdStrike Falcon? platform offers instant visibility and protection across the enterprise and prevents attacks on endpoints on or off the network. When CrowdStrike needed to expand their Product to U.S. Federal, they contracted with the Quzara Federal team. Quzara assisted CrowdStrike with their FedRAMP Authority to Operate (ATO) efforts.Quzara worked with CrowdStrike’s Engineering and Compliance teams to design security controls to meet stringent FedRAMP Requirements. These requirements are based on the National Institute of Standards and Technology (NIST) Security Publication (SP) 800-53 and tailored for Cloud computing.To meet these requirements, Quzara worked alongside the CrowdStrike team to build requirements based on leveraging Amazon Web Services (AWS) GovCloud offering. Quzara’s Compliance engineers provided augmentation to CrowdStrike’s ability to with implementation of controls at the Application and the Infrastructure layers while maximizing the investment and controls inheritance from AWS. Why Amazon Web ServicesBased on the challenges outlined above, Quzara strongly advised CrowdStrike to run their platform on Amazon Web Services (AWS) GovCloud, in large part due to the Cloud Service Provider’s (CSPs) track record of performance and Security innovation. AWS GovCloud (US) allows Federal agencies to adhere to US International Traffic in Arms Regulations (ITAR) regulations, the Federal Risk and Authorization Management Program (FedRAMP) requirements, and Department of Defense (DoD) Cloud Computing Security Requirements Guide (SRG) Levels two (2) and four (4).Likewise, using AWS GovCloud enabled CrowdStrike to protect sensitive unclassified data files with server-side encryption in Amazon S3; store and manage security keys with AWS Key Management Service (KMS) and limit access to sensitive data by individual, time and location. It also allowed CrowdStrike to restrict which API calls that users are able to make with identity federation, enable easy key rotation, and utilize other powerful access control testing tools that are available on AWS.Quzara, based on our security and compliance expertise, assisted CrowdStrike in prioritizing the implementation of controls and created a Government focused cloud offering. Leveraging controls and services offered by AWS GovCloud was a key factor in our success. CrowdStrike successfully received it’s FedRAMP Authority to Operate (ATO). ................
................
In order to avoid copyright disputes, this page is only a partial summary.
To fulfill the demand for quickly locating and searching documents.
It is intelligent file search solution for home and business.