Managed Cloud Security (MCS)
While 91% of organisations operate a multi-cloud environment, most have limited in-house expertise. This can result in a fragmented view of their security posture and minimal, ongoing monitoring of workloads or the impact of configuration changes. Meeting cloud compliance requirements and governance challenges inevitably takes the focus away from client projects.
Our MCS service provides a single view of all cloud assets and exposures across multiple providers. Combined with our threat intelligence and expertise, we provide the platform and support in the people and processes required to drive ongoing change. All complemented by 24x7 identification and support in resolving critical configuration issues.
Our cloud security services
Our 24 x 7 SOC teams in UK and NZ will ensure all critical exposures and incidents are raised in minutes not days, and you always have an analyst on hand to support incident response.
Using the Prisma Cloud platform by our alliance partners at Palo Alto Networks allows us to support all major IaaS platform providers.
Assess: Cloud Risk Insights
Assess and baseline your security posture with a short 2 week, fixed price assessment
Report: Managed Cloud Insights
Ongoing managed service to monitor and report on your security posture across all your cloud environments
Remediate: Secure Cloud Adoption
Architecture and design support to ensure that your cloud environments are built securely and exposures remediated
Monitor: Managed Cloud Defence
End to end managed cloud security service encapsulating security controls across build,deploy & run
Deployment and Optimisation
- Onboarding of cloud organisations and accounts, across multiple public clouds
- Optimisation of cloud environment in preparations for BAU
- Design and build of custom policies
- Scoped per environment (based on number of VMs)
- Scoped per environment (based on number of VMs)
- Scoped individually based on requirements
Platform features
- Access to the CNAPP to gain near real-time visibility into cloud threats
- Threat Intelligence via PwC's unique, acclaimed threat feeds
- ChatOps integration such as via Slack channels
- Compliance reporting as per your standard or framework
- 24/7 Access
- Feeds are ingested automatically into our threat management portal
- 24/7 human access to our cloud analysts
- Monthly reporting (or bespoke, to be scoped separately)
Managed Service
- Consultant-led remediation planning, guidance, prioritisation and monitoring
- Monitoring of critical and high security violations
- Review of non-critical violations and false positive removal
- Management of Prisma Cloud platform – upgrades, scheduled maintenance, incident management
- Remediation packages – allowing our cloud specialists to reduce your cloud threat exposure
- 5 days per month reporting (or bespoke, to be scoped separately)
- 24/7 via our threat management portal
- 9x5 management via our Cloud Engineering specialists
- Discounted rate card for remediation work included with every contract, with individual tasks scoped per environment
| Cloud Security Posture | Build Process Security | Securing Runtime | |
|---|---|---|---|
| Identify | Assets, Misconfigurations & Vulnerabilities | Secrets, Insecure Code, Open Source Vulnerabilities, Identity Security | Non-Compliant Assets, Vulnerabilities, Anomalous Workload Behaviour. |
| Deploy | Cloud Security Posture Management (CSPM) | Code/Secret Scanning, Software Composition Analysis, IAM Analysis | Runtime Detection, Threat Detection, API Security. |
| PwC Added Value | Extensive in-house expertise enabling clients to achieve compliance to frameworks and standards, tailored to each organisation. | Highlight developer mistakes, improve the security posture of all cloud environments, from Development through to Production. | Runtime rulesets created by experts, coupled with Machine Learning provides clients with the most robust security posture. |
Related services
Managed Detection and Response (MDR)
Our team of detection and response specialists ensure that you are ready to respond to even the most sophisticated cyber threats. Using next generation threat hunting and detection and response capabilities that extend beyond the endpoint, our MDR services unify your network and cloud detection and response capabilities into a single view.
Find out more
