Infrastructure protection

EUCSEC10: How do you implement network protection in your EUC environment?

Network protection is required between infrastructure, application servers, and end user facing systems to help you adhere to your organization's security policies and reduce risks.

EUCSEC11: How do you scan for vulnerabilities and perform patch management for your EUC instances?

Organizations commonly implement security policies requiring robust and continuous protection of systems that provide end user computing services. As new exploits emerge and vulnerabilities are discovered regularly, maintaining strong security is an ongoing process. You should routinely assess and update your systems with security patches to maintain an effective defence against evolving threats.

EUCSEC12: How do you prevent user access to non-essential software binaries present on systems that cannot be uninstalled?

Many organizations have security policies that require that users in end user computing systems only have access to the software and applications they need to fulfil their role.

Best practices

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

EUCSEC09-BP01 Verify that your instances are configured as expected

EUCSEC10-BP01 Implement network separation for AWS EUC instances