Azure Security Assessment - 3 weeks

CGI is a leading provider of cybersecurity services to both government and industry clients, backed by 25 years of quality service delivery.

In the Azure Security Assessment, our cyber subject matter experts will assess your IaaS, PaaS or SaaS instance(s) in your Azure tenancy to ensure that your data and critical business functions are protected and reflect the security posture you need to support your business mission.

Our Differentiators

With professional cybersecurity professionals in Europe, the UK, Canada, the US and Australia, CGI has the ability to leverage a broad global pool of experts to work closely with our clients to ensure they are leveraging Azure controls/guardrails and Azure-native safeguards, such as Defender, and security services available as part of their Azure subscription, tailored to each their needs.

We do this by ensuring that the guardrails, safeguards and other related security measures are properly configured and implemented. These can include (as applicable to the client’s environment):

• Microsoft Defender for Cloud
• Azure Key Vault
• Azure Monitor Logs
• Azure Storage service Encryption
• StorSimple Encrypted Hybrid Storage
• Azure Client-side Encryption
• Azure Storage Shared Access Signatures
• Azure Storage Account Keys
• Azure File shares with SMB 3.0 Encryption
• Azure Storage Analytics
• Azure SQL Firewall
• Azure SQL Cell Level Encryption
• Azure SQL: Connection Encryption
• Azure SQL Transparent Data Encryption
• Azure SQL Database Auditing
• Azure Role-Based Access Control
• Azure Active Directory
• Azure Active Directory B2C
• Azure Active Directory Domain Services
• AZURE ad Multi-Factor Authentication
• Azure Backup
• Azure Site Recovery
• Network Security Groups
• Azure VPN Gateway(s)
• Azure Application Gateway
• Azure Application Firewall
• Azure Load Balancer
• Azure Traffic Manager
• Azure ExpressRoute
• Azure Application Proxy
• Azure Firewall
• Azure DDOS Protection
• Virtual Network Service Endpoints

The following core functional categories will be assessed:

• Cloud Governance
• Identity & Access Management
• Platform Security
• Security Operations
• Application & Data Security
• Use of Encryption
• Subscription Security

The assessment will identify existing gaps and resulting risks, and provide recommendations on:

• Additional measures that could/should be undertaken to reduce residual risk
• Using Azure cloud-native tools and services for security governance, risk management, security monitoring and incident response.

Due to the broad range of each client’s needs, scale and complexity, we work with clients at the onset to provide a firm quote for effort/duration and cost, based on scope, regulatory and policy compliance requirements and complexity, numbers of subscriptions, services and nodes.