Coalition’s not-so-secret master plan has always been to provide comprehensive digital risk management options for businesses — that means going beyond cyber insurance and investing data and resources in a cybersecurity platform. 

We already provide businesses with insights into their external risk posture via Coalition Control™. Our long-term vision necessitates going beyond external risks and offering businesses a more holistic view of their cyber risk posture, including insights into internal risks. 

Control integrates with the cloud service providers Microsoft 365, Google Workspace, and Amazon Web Services (AWS) to enable end-to-end cyber risk management in one platform. By connecting Control to any of these cloud providers, Coalition policyholders and Control customers can take a more active role in managing and mitigating the cyber risks most relevant to their daily operations.

How does integrating Control with cloud providers present a more holistic view of cyber risk?

Coalition Control is a cyber risk management platform that enables businesses to better manage their cyber risk posture using insights from the same data and technology we use to protect hundreds of thousands of businesses. Our Integrations within Coalition Control go far beyond cyber insurance and allow businesses to better manage their digital risks by connecting with an ecosystem of cloud infrastructure, applications, and endpoints. 

When businesses connect Control to one or more cloud providers, they get a holistic view of their internal risk posture and the external attack surface. Businesses can understand how to enhance their security posture and access important cloud security controls, such as enabling multi-factor authentication (MFA) or securing services that store business-critical information.

Each integration helps businesses address the risks specific to a given cloud provider. Given the ubiquity of these providers, helping businesses manage and secure their offerings is critical. 

Enable MFA in Microsoft 365, Google Workspace

The Microsoft 365 and Google Workspace integrations both allow businesses to automatically validate whether MFA is in place and enforced for their entire organization. MFA is a critical security control that creates friction for threat actors, and both Microsoft and Google have stated MFA helps reduce account takeovers.

Prior to connecting their cloud providers to Coalition Control, more than half of all businesses did not have MFA enabled for the cloud service. However, after integrating with Control and gaining clarity on their MFA status, 23% of businesses using Google Workspace took action to enable MFA.

Businesses using Microsoft 365 can also manage licenses and see which are unassigned and have enhanced security features.

Prior to connecting their cloud providers to Coalition Control, more than half of all businesses did not have MFA enabled for the cloud service. However, after integrating with Control and gaining clarity on their MFA status, 23% of businesses using Google Workspace took action to enable MFA.

Prevent public access to S3 buckets in AWS

Businesses that use AWS often store and access sensitive information in S3 buckets. AWS is responsible for securing cloud infrastructure, and users are responsible for securing their data. 

As a best practice, AWS recommends disabling public access to S3 buckets and using policies to further control access. When S3 buckets are misconfigured or left accessible to the public internet, they can become the target of cyber attacks, potentially leading to data breaches.

Businesses that integrate Control with their AWS account receive detailed information about their S3 configurations and other critical security controls, such as whether MFA is enabled for the root user. 

Businesses can connect their cloud providers to Control in just a few minutes to better understand their cyber risk posture.

Coalition Control: Integrated risk management in one platform

When businesses connect their cloud provider to Control, they can take action and protect their cloud-based applications and services from cyber-attacks. We’re excited about the future and to continue offering features and enhancements that provide a more holistic view of cyber risk and enable businesses to make good cybersecurity decisions. 

To enable this integration in Coalition Control™, customers and policyholders can visit: https://control.coalitioninc.com.

This blog post is designed to provide general information on the topic presented and is not intended to construe or the rendering of legal or other professional services of any kind. If legal or other professional advice is required, the services of a professional should be sought. The views and opinions expressed as part of this blog post do not necessarily state or reflect those of Coalition. Neither Coalition nor any of its employees make any warranty of any kind, express or implied, or assume any legal liability or responsibility for the accuracy, completeness, or usefulness of any information, product or process disclosed. The blog post may include links to other third-party websites. These links are provided as a convenience only. Coalition does not endorse, have control over nor assumes responsibility or liability for the content, privacy policy or practices of any such third-party websites.