Using serverless technology, Nasstar designed and delivered a flexible solution that empowers Center Parcs’ security team.
CLIENT
Center Parcs
INDUSTRY
Leisure & hospitality
SERVICE
Cloud
PARTNER
aws
The client
For several years, Nasstar has supported Center Parcs by managing its AWS estate. This comprises several solutions that have been strategically deployed across multiple AWS accounts, allowing the organisation to optimise operations and deliver exceptional service to its customers.
This case study can also be found over at Colibri Digital, part of The Nasstar Group.
The challenges
The root user controls an entire AWS estate, including critical systems such as databases, servers, and applications. Therefore, any compromise of root user credentials can have serious consequences.
As part of ongoing consultancy and collaboration between Nasstar and Center Parcs, it was recognised that a comprehensive solution was required to enhance security measures.
Specifically, it was determined that a monthly report should be generated to capture any instances where the organisation's AWS accounts were accessed through the root user via the web console. This report would not only record essential information like the precise date and time of each event but would also include a reference to the unique multi-factor authentication (MFA) device utilised by staff members during the access process.
Our goal
The outcome
Using its optimisation expertise, Nasstar selected the best components for a streamlined, cost-effective deployment. The serverless architecture ensures efficient resource use and maximises Center Parcs' investment.
The root access solution has provided Center Parcs’ security team with greater visibility and control. They now have monthly reports which provide detailed insights into root user access across their entire AWS estate.
With real-time notifications, Center Parcs can respond quickly to unexpected activity. This aligns with industry best practice by embracing zero-trust principles and safeguarding critical systems from unauthorised access.
To enhance observability and ensure the health of this solution, Nasstar deployed CloudWatch, an AWS monitoring tool. CloudWatch Alarms provide real-time visibility, and alerts notify support teams of unusual activity for quick investigation and response.
We've gained unparalleled visibility into our AWS environment, allowing us to swiftly address potential security threats and demonstrate compliance with rigorous audit requirements, thanks to Nasstar's comprehensive solution.
01
Using serverless technology, Nasstar has crafted a robust solution that empowers Center Parcs’ security team. Nasstar implemented Amazon EventBridge across all AWS accounts within the Center Parcs estate and integrated it with AWS CloudTrail to capture root login events in real time, significantly simplifying the audit process.
02
03
04
