• Documentation: Contains the incident response plan and compliance documentation we wrote as part of the solutions for this project.
• Cloud-Architecture Design: Contains the network design, topology, and flowcharts for our AWS Cloud resources.
• Scripts: Contains the scripts used to automate and test process of the AWS Cloud Infrastructure.
• Presentation: Contains a .pdf copy of the slide deck we used to present our solutions and a link to the final presentation video.

DigiGuard is a ficticious organization created as part of a course project. Our group is currently enrolled at CodeFellows in the Cyber Security Engineering program with a schedule completion date of September 15, 2023.

We have been contracted by our client company, Compu-Global-Hyper-Mega-Net, to improve the cybersecurity processes and systems of their AWS Cloud resources with a focus on logging, monitoring and detection of adversarial activity on cloud infrastructure. The client has requested a demonstration of how Digi-Guard will be able to protect its cloud infrastructure.

AWS Infrastructure:

• Implemented AWS IAM Users, UserGroups, Roles and Permissions to provide role based access.
• Utilized AWS Guard Duty to monitor API calls within the AWS management environment.
• Utilized Cloud Formation to implement infrastructure as code to create Logs, metrics, alarms and alert messages regarding suspicious activity across the AWS management environment and the Virtual Private Cloud environment.
• CloudTrail and Cloudwatch have been enabled and configured for security monitoring.

Virtual Private Cloud

• Private CIS-compliant Windows server in EC2 with VPN-only access and hard drive encryption.
• Public CIS-compliant Linux Data server with hard drive encryption for public website hosting.