Connect with Us

Insights

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

Industry Segments We Serve

Empowering our customers to bring innovation to life, includes Design-led engineering: Designing, prototyping, and delivering quality products and services faster than traditional approaches.

Company

InSphere is a leading digital transformation company, we have leveraged advanced digital technology solutions with industry transformation to large enterprises and public sectors for more than a decade.

Comprehensive AWS Solutions for Safeguarding Recruitment Portal

Posted By : Praveen

Challenges

Our team successfully migrated an online recruitment platform catering specifically to aspiring candidates. The portal provides extensive information on diverse job opportunities and also generates a significant amount of data every year (Approx 2 million records) including Candidate records, administrative information, and more sensitive information. Managing and storing these data securely and efficiently was a challenge.

Solution Highlights:

cloud icon
Determine the specific reasons for migration
cloud icon
Identify Workloads based on the criticality, dependencies, and resource requirements
cloud icon
Evaluate the current infrastructures that include
• Servers to be moved
• Database size, type and estimated yearly incremental volume
• Running applications, tools, and OS
• Total Disk Volume
cloud icon
Frequency of Backup

We implemented robust security measures across multiple levels - network, subnet, and instance - to safeguard the infrastructure and prevent malicious attacks on the application. In the event of an intrusion, the system can promptly identify the source and take actions. We designed the infra to proactively detect and alert any loopholes or vulnerabilities within the infrastructure.

Services Used:

  • We utilized AWS WAF to filter incoming traffic, employing both managed and custom rules for tasks such as IP blocking, Geofencing, and detection and mitigation of DDoS attacks
  • At the network level, additional preventive measures have been implemented to filter traffic using Network Firewall.
  • Guard duty has been used for threat detection service that continuously monitors malicious activity and unauthorized behavior within AWS accounts and workloads
  • Access Analyzer use to prevent unintended access to S3 buckets and IAM roles by continuously monitoring permissions for resources in AWS environment
  • Security Hub is used to alerts to the potential securities issues
  • We have ensured that both data at rest and data in transit are encrypted using AWS encryption services.
  • We have implemented the principle of least privilege by assigning IAM users the minimum permissions necessary to perform their respective tasks.
  • To facilitate secure communication between on-premises networks and AWS resources we created AWS VPN ensuring data privacy and integrity during transmission over the internet

Outcome:

  • By implementing robust security measures across multiple levels and utilizing services like AWS WAF, Network Firewall, GuardDuty, Access Analyzer, and Security Hub, the recruitment platform's security posture has been significantly strengthened, Ensuring protection against threats such as DDoS attacks (65% more malicious addresses filtered out)
  • With proactive detection mechanisms in place, including continuous monitoring for vulnerabilities and suspicious activities, the platform can identify and address security risks in real-time, as a result also incident response time improved by 84%
  • Encryption of both data at rest and data in transit using AWS encryption services, reducing the risk of data exposure or unauthorized access.
  • Adhering to the principle of least privilege for IAM users minimizes insider threats (Reduced the Access Control Violations by 40%), while AWS VPN facilitates secure communication between on-premises networks and AWS resources, ensuring data privacy and integrity during transmission.

Other Blogs

nic logo nic logo nic logo
Our empanelment with parent body
It’s involves modernizing and optimizing an organization’s data management, analytics, and security to align with the company’s digital transformation objectives.