In this expert-led virtual panel, security leaders from PTP and Cisco broke down the key principles of securing AWS environments—from shared responsibility to zero trust. Moderated by PTP’s Gary Derheim, the discussion featured actionable insights for building secure AWS infrastructure for life sciences and biotech teams.
Cloud Security Starts with Shared Responsibility
PTP’s Ethan Simmons opened with the AWS shared responsibility model, emphasizing how many SMBs misinterpret it—leaving workloads, IAM, and network configurations exposed. Cisco’s David Quart and Tish Scarborough echoed this challenge, especially in research labs lacking security resources.
The Four Pillars of Secure AWS Architecture
- Visibility – Unified awareness across hybrid and cloud
- Segmentation – Limiting lateral movement
- Threat Protection – Behavioral monitoring tools like AMP
- IAM – Enforcing zero trust and MFA with Cisco Duo
Panelists highlighted Cisco solutions including Stealthwatch, Umbrella, and Tetration as key to these pillars.
Common Pitfalls in AWS Security
Steve Hoevenaar outlined repeat offenders: excessive admin roles, no MFA, unpatched workloads, and open ports. He stressed ongoing audits and enforcing encryption, especially for biotech cloud infrastructure.
Understanding Zero Trust
Tish explained zero trust as a mindset—not a product. She broke it into Cisco’s “3 Ws”: workforce (secured by Duo), workloads (Tetration), and workplace (SDA). Continuous policy verification is key to secure AWS environments.
Real-World Examples
- SaaS company used Cisco ASAv to avoid VPN overhaul
- Biotech team improved IAM and monitoring with Duo + Stealthwatch
- Hybrid organizations protected split-tunnel access with Umbrella
Visibility + Managed Detection
Steve emphasized ongoing threat detection using tools like Fluency and CloudCheckr, including vulnerability scanning, CloudTrail log review, and posture scoring. Continuous remediation and monthly security briefings are critical.
Contact PTP to learn how we help research teams manage AWS visibility, secure VPC traffic, and improve compliance with Cisco-native cloud tools.
Highlights from the Panel Discussion
0:07 – Gary Derheim opens the discussion and introduces the panel format as part of PTP’s ongoing virtual happy hour series on secure cloud strategies for life sciences.
4:45 – Gary introduces PTP’s PeakPlus team and their role in delivering managed cloud, network, and security operations for biotech and research environments.
14:12 – Ethan Simmons explains the AWS shared responsibility model, emphasizing that cloud customers—especially in regulated industries—must secure their own data, applications, and OS-level configurations. This is critical for AWS security for life sciences companies.
18:01 – David Quart from Cisco introduces the four pillars of AWS secure architecture: Visibility, Segmentation, Threat Protection, and Identity & Access Management—essential for maintaining compliant IT infrastructure for biotech.
21:21 – Tish Scarborough elaborates on common cloud security challenges, including lack of visibility, misconfigured workloads, and insecure app communication—all of which impact research IT support services.
24:03 – Steve Hoevenaar stresses the importance of centralized visibility and continuous monitoring across tools to reduce the burden on security teams managing hybrid cloud environments.
25:06 – Steve explains how Cisco AMP and Umbrella reduce security risks associated with split tunneling, helping life sciences teams enable secure remote work while meeting data protection requirements.
28:14 – Ethan compares native AWS tools to third-party solutions like Cisco Stealthwatch and Fluency, offering enhanced cloud visibility for scientific computing IT support.
32:01 – David explains the partnership between Cisco and AWS, and how they work together to support secure cloud migrations for life sciences teams through shared integrations and marketplace solutions.
35:04 – Ethan discusses cost-awareness in cloud networking design and its impact on budget efficiency, tying it to cloud optimization for biotech environments.
42:00 – Steve outlines common AWS misconfigurations found by PTP: excessive admin access, lack of MFA, open ACLs, and unencrypted S3 buckets—frequent issues in biotech IT infrastructure assessments.
45:02 – Tish defines Cisco’s zero trust model across workforce, workloads, and workplace using Duo, Tetration, and software-defined access—foundational for secure research and clinical collaboration.
50:03 – Ethan shares a real-world use case of deploying Cisco ASAv in AWS to quickly enable VPN access during a remote work transition—crucial for managed IT services for remote research teams.
51:04 – A case study shows how a SaaS client migrated to AWS without changing VPN configurations, leveraging Cisco tools for seamless, secure access and continuity in R&D workflows.
53:12 – Steve describes PTP’s detection strategy, including CloudCheckr, vulnerability scanning, and Fluency—supporting threat detection for life sciences environments.
56:03 – Gary and Steve close by emphasizing the importance of ongoing remediation—audits and monitoring are only valuable if teams act to improve security posture and reduce risk exposure.
Strengthen your defenses against emerging threats
Request a 50% off security assessment to evaluate your risk posture and harden your environment or enhance your cybersecurity with our comprehensive SecOps services. Visit our SecOps page for more information.