RMS Selects Sonrai Security to Improve Security Across AWS and Azure
Risk Management Solutions, Inc. (RMS) is a leading technology company that focuses on delivering catastrophe risk modeling to help insurers, financial markets, corporations, and public agencies evaluate and manage risk. Insurers, reinsurers, trading companies, and other financial institutions trust RMS to better understand and manage the risks of natural and human-made catastrophes, including hurricanes, earthquakes, floods, terrorism, and pandemics.
RMS wanted greater visibility into the total number of cloud accounts across AWS and Azure and whether these accounts were configured appropriately. More importantly, they wanted greater insights into how data could be accessed across these public cloud environments by a large number of active compute instances. As a subsidiary of Daily Mail General Trust, RMS adheres to comprehensive compliance checks and mandates since they hold data for many companies across the globe. Tracking data movement and access is critical for mandates like GDPR.
Tactical issues and platform configurations that needed remediation.
Unmanaged legacy cloud accounts that were interacting with RMS core cloud accounts.
Gaps in security best practices that needed to be addressed at the development level.
The Sonrai platform easily solved the issue of activity monitoring across the cloud by gaining visibility and trust relationships across all accounts. By understanding interactions and originating identities, RMS was able to identify and establish all trust relationships between accounts. Compliance and platform posture gaps were quickly addressed as Sonrai identified problems at their source. Finally, the Sonrai platform’s continuous monitoring of identity, access, and least privilege ensures best practices are adopted across RMS DevOps teams.
Identity and data access complexity are exploding in your public cloud. Tens of thousands of pieces of compute, thousands of roles, and a dizzying array of interdependencies and inheritances. First-generation security tools miss this as evidenced by so many breaches. Sonrai Dig de-risks your cloud by finding these holes, helping you fix them, and preventing those problems from occurring in the first place. Schedule a conversation to talk with us about how we can help your enterprise.