Security offerings for AWS Control Tower

Caylent Security Catalyst Reference Architecture Examples

This repository contains solutions for Caylent's Security Catalyst. The Security Catalyst is an additional offering to our customized AWS Control Tower Solution. This Security Solutions will help your organization deploy AWS security-related services in a multi-account environment following patterns that align with the AWS Security Reference Architecture.

The resources created in these solutions have IAM roles and policies that following the practice of least priveledge. They will need to be modified to suit your organization's needs.

The examples within this repository have been deployed and tested using the corresponding deployment platform (e.g. AWS Control Tower and AWS CloudFormation StackSets).

Security Catalyst Example Solutions

• CloudTrail
  • Organization CloudTrail
• Config
  • Account Aggregator
  • Organization Aggregator
  • Organization Conformance Pack
• Firewall Manager
  • Organization Firewall Manager
• GuardDuty
  • Organization GuardDuty
• IAM
  • Access Analyzer
  • Account Password Policy
• Macie
  • Organization Macie
• SecurityHub
  • Account SecurityHub Enabler

Extras

• Prerequisites for AWS Control Tower solutions
• packaging-scripts
  • package-lambda.sh (Creates the Lambda zip file and uploads to an S3 bucket)

Repository and Solution Naming Convention

The repository is organized by AWS service solutions, which include deployment platforms (e.g., AWS Control Tower and AWS CloudFormation StackSet).

Example:

.
|-- solutions
    |-- guardduty
        |-- guardduty-org
            |-- aws-control-tower/
                |-- parameters/
                |-- manifest.yaml
           |-- code/src/
               |-- app.py
               |-- requirements.txt
           |-- templates/
               |-- guardduty-org-configuration.yaml
               |-- ...
    |-- ...

The example solutions within this repository can be managed/deployed to accounts using AWS Organizations or directly within individual accounts. The suffix on the solution name identifies how the solution is managed/deployed.

Author

Caylent Inc.