Chunghwa Telecom is the only provider in Taiwan to maintain A-ratings for two consecutive years across all five Security items of the Executive Yuan's Security provider assessment—a recognition of Chunghwa Telecom's professional technologies, passion for service, and farsighted technical advancement. When a company adopts AWS services, Chunghwa Telecom can help the company meet compliance requirements and form comprehensive Security measures for both local and cloud networks. Chunghwa Telecom provides Security services to you with its experienced and AWS certified professionals and cloud architecture experts. We help companies to save massive costs in terms of human resources and time, and make a safe, reliable, and economical operational model for the AWS hybrid cloud environment.

• Suitable for first-time users of cloud infrastructure who want to quickly implement Security but lack cyber threat intelligence and Security maintenance personnel.
• Chunghwa Telecom controls the highest amounts of network traffic monitoring data and uses the newest machine learning AI analysis technology to produce its own cyber threat intelligence. It also compiles intelligence from both domestic and foreign Security providers to reduce disparities in protection.
• The customer can have the latest and most up-to-date threat intelligence automatically deployed to its cloud environment through the use of AWS lambda paired with an automatically updated AWS WAF block list and network access control list (ACL) firewall rules. Altogether, it gives the customer the advantages of operations as code, while reducing the occurrence of errors by human input and increasing Security maintenance efficiency.
• High-tech manufacturing industry Successful Cases: After incorporating Chunghwa Telecom's automatic integration of cyber threat intelligence solution, fast updates for the latest cyber threat intelligence are made over lambda, meaning that the customer has even higher levels of protection. And it also reduces the complex processes once needed to setup firewall access control lists while also reducing need for Security maintenance personnel.

• Uses AWS WAF Log for active analysis, which lets the customer see the quantified results of their investment in Security and website protection.
• Chunghwa Telecom's expert Security team creates custom AWS WAF rule adjustment services. It creates its website services by thinking from the mind of a hacker.
• AWS WAF provides comprehensive logs by capturing and inspecting the complete header data of each web request, completely retaining log records in S3 storage, and applying CloudWatch to establish monitoring rules and reminders, and thereby providing visualization of real-time web traffic.
• Using AWS Lambda and Athena for the automatic analysis of logs from AWS WAF and Application Load Balancers (ALB), when the number of suspected attacks exceeds a certain value, Lambda will enter the sources of these attacks into the WAF IPSets and NACL block lists. All attacks from these sources will be blocked, thus accelerating response and processing of Security incidents.
• Engineering consulting industry Successful Cases: Amazon Athena's server-less service was adopted to quickly analyze the big data from WAF and ALB Security logs, which reduced costs associated with cluster management. Simple SQL queries can be used for automatic horizontal expansion and execution of distributed query processing, effectively reducing build costs and Security maintenance work by more than 80%, allowing customers to go on the cloud while still focusing on their core business.

• Comprehensive monitoring of a company's cloud security posture by ensuring three aspects of security: identity, data, and applications.
• This incorporates AWS Security Hub fully-hosted smart Security services, automatic AI intelligent integration analysis of security information from such services as Guardduty, Inspector, Macie, IAM Access Analyzer, and Firewall Manager; the industry's best cloud security practices (such as CIS AWS Foundations ) and international security standards (such as the Payment Card Industry Security Standard [PCI DSS]) are referenced, providing high-priority security reminders and overall inspection of continuous compliance, and then presenting the results in the central dashboard.
• AWS Security Hub can be combined with Lamdba and SNS services to automatically issue problem list alerts for the system maintenance personnel. This merges the work status and management function, accelerating the reporting of cloud events and response/handling procedures.
• Internet innovation industry Successful Cases: AWS's server-less architecture incorporates intelligent Security consulting services to effectively reduce time spent compiling Security logs; it provides continuous review of compliance status while also simplifying the processes for compliance audits, security analyses, operational fault diagnostics, and event processing and mitigation. In addition, SecurityHub charges by actual usage, thus saving costs on Security procurement.

Advantages of the AWS Security consulting services:

• Security has become increasingly important for companies. Compared with internal firewall solutions, along with costs from maintenance and operations, the AWS security solution can save over 80% in costs.