AWS Revamps Security Competency Program with New Specializations

AWS also expanded its Level 1 MSSP Competency Specializations with six new security services domains.

Jeffrey Schwartz

July 26, 2022

6 Slides

AWS RE:INFORCE — Amazon has revamped its AWS Security Competency program with a new set of specializations. The cloud giant redesigned it so customers could more easily find partners with proper specialties based on their requirements.

AWS launched the new program on Tuesday at AWS re:Inforce, the company’s security conference in Boston. AWS chief information security officer (CISO) C.J. Moses announced the relaunch of the program during the opening keynote session.

“We want to assist customers in avoiding security jargon so they can pinpoint the third-party software needed to support them, all of course validated by AWS,” Moses said. “Because our AWS security competency partners are critical to extending the benefits of AWS, we took customer feedback to do a global design.”

AWS organized the program into eight categories that address 40 different customer security use cases, including software and professional service support, Moses noted. The eight categories include application security, data protection, identity and access management (IAM), compliance and privacy and infrastructure security. Threat detection and response (TDR), perimeter protection and core security are also on the list.

‘[The] software security competency partners successfully underwent a rigorous technical and operational validation process with AWS security experts,” Moses said.

For example, AWS created a zero-trust network use case in the infrastructure category.

AWS-Level-1-MSSP-Specializations.jpgAWS announced 42 launch partners. They include Accenture, Alert Logic, Aqua, Barracuda, Check Point, Deloitte, DXC Technology, Fortinet, IBM, Presidio and Sentinel One. Others are Sophos, Splunk, Tanium, Tenable, Trend Micro, Wipro, Wiz and ZScaler.

Alert Logic announced it met the AWS Security Competency for TDR for its managed detection and response (MDR) offering. Also, Alert Logic said it has achieved the new AWS Level 1 MSSP Software Competency.

Level 1 MSSP Software Competency

AWS also launched specialization categories for the AWS Level 1 MSSP Competency. The new categories consist of six specialized managed security services to AWS’s Level 1 MSSP Competency program launched last year.

Here’s our most recent list of important channel-program changes you should know.

At the time, the program launched with competencies including infrastructure vulnerability, resource inventory visibility, security best practices monitoring, compliance monitoring, triaging of security events, 24×7 incident alerting, distributed denial-of-service mitigation, managed intrusion protection, MDR for AWS endpoints and managed web application firewall.

According to AWS, the solutions must provide 24×7 monitoring and response services and extend AWS’ Level 1 MSSP baseline. The six MSSP security service domains include: vulnerability management, network security, cloud security best practices and compliance, host and endpoint security, threat detection and response and application security.

AWS said Level 1 MSSP partners are certified to use native AWS security services including Amazon Guard Duty, the AWS Security Hub and ISV SaaS security tools. Level 1 MSSP partners provide 24×7 monitoring of “essential” AWS resources, while providing complete visibility of AWS resources that are added, moved or removed.

Level 1 MSSP Competency specialization partners supporting the new AWS categories include Accenture, Arctic Wolf, Capgemini, Deepwatch, Delotte, DXC, GDIT, Hitachi, Ibexlabs, IBM, Proficio, RedBearIT, StackArmor and Wipro.

We outline the six new Level 1 MSSP Competency Specialization categories, as described by AWS in the slideshow above.

Want to contact the author directly about this story? Have ideas for a follow-up article? Email Jeffrey Schwartz or connect with him on LinkedIn.


Read more about:


About the Author(s)

Jeffrey Schwartz

Jeffrey Schwartz has covered the IT industry for nearly three decades, most recently as editor-in-chief of Redmond magazine and executive editor of Redmond Channel Partner. Prior to that, he held various editing and writing roles at CommunicationsWeek, InternetWeek and VARBusiness (now CRN) magazines, among other publications.

Free Newsletters for the Channel
Register for Your Free Newsletter Now

You May Also Like