MAS + Cloud
The primary focus of MAS-TRM is access control and encryption of confidential data. Since MAS recognizes cloud services as outsourcing, customers must ensure best practices are followed. MAS guidelines state that sensitive information must be encrypted before offsite transport and protected on IT systems, servers, and databases through strong access controls, following the principle of “least privilege.”
Access rights should be granted based on job responsibility — no intrinsic access should be granted by rank or position. Financial institutions should maintain audit logging of privileged user activities while disallowing privileged users access to logs capturing their actions.
Why Cloudanix?
Although MAS TRM guidelines are not legally binding, they serve as a key benchmark in assessing financial institutions' risks. Compliance helps prevent malicious insider attacks such as breaches or data leaks, which could lead to significant financial and reputational losses.
Cloudanix helps you achieve MAS compliance and secures your cloud infrastructure by automating audits with rules that enforce TRM guidelines. For example, our AWS EKS audit recipe includes rules for Non-public Endpoints, EKS Security Groups, ECR Private Repo, and more.
These audits detect infringements in access control and privilege management, ensuring you follow MAS security best practices while Cloudanix manages your security audits.
