.png)
.png)
IDT Solution
IDT support New Angle Systems LLC in meeting SOC 2 compliance requirements, IDT LLC developed Ansiblebased automation to apply CIS hardening for Amazon Linux 2, CentOS, and Red Hat operating systems. This allowed the creation of CIS-compliant golden AMIs for each OS.
As part of the implementation, IDT set up cloned test environments across several AWS regions, replicating the customer’s full production stack—including load balancers, application servers, and databases. These environments enabled thorough testing of the hardened images in real-world conditions.
Following successful validation, IDT migrated the customer’s production SaaS workloads—including EC2- based application servers, databases, and load balancers—to the new, secure CIS-hardened EC2 instances, ensuring compliance and improved security posture.
THE MIGRATION OF APPLICATION SERVICES, DB AND LOAD BALANCER TO CIS BASED SECURE EC2 INSTANCES
Executive Summary
New Angle Systems LLC partnered with Innovative Digital Transformation LLC (IDT) to enhance its security posture in alignment with SOC 2 compliance requirements. As part of this initiative, the company aimed to migrate its production workloads to EC2 instances hardened according to Center for Internet Security (CIS) benchmarks. The engagement involved automating OS hardening with Ansible, producing golden AMIs for Amazon Linux 2, CentOS, and Red Hat, and migrating live SaaS workloads across multiple AWS regions to a newly secured infrastructure. Through careful planning, rigorous testing, and seamless execution, IDT successfully delivered a robust solution tailored to the customer's compliance and operational needs.
THE MIGRATION OF APPLICATION SERVICES, DB AND LOAD BALANCER TO CIS BASED SECURE EC2 INSTANCES
Executive Summary
New Angle Systems LLC partnered with Innovative Digital Transformation LLC (IDT) to enhance its security posture in alignment with SOC 2 compliance requirements. As part of this initiative, the company aimed to migrate its production workloads to EC2 instances hardened according to Center for Internet Security (CIS) benchmarks. The engagement involved automating OS hardening with Ansible, producing golden AMIs for Amazon Linux 2, CentOS, and Red Hat, and migrating live SaaS workloads across multiple AWS regions to a newly secured infrastructure. Through careful planning, rigorous testing, and seamless execution, IDT successfully delivered a robust solution tailored to the customer's compliance and operational needs.
New Angle Systems LLC
Case Study
The Challenge
To meet SOC 2 compliance standards, New Angle Systems LLC required its production workloads to run on EC2 instances hardened according to CIS benchmarks. This involved a complex set of needs:
- Develop Ansible-based automation for CIS hardening
- Generate CIS-compliant golden AMIs for Amazon Linux 2, CentOS, and Red Hat
- Build full test environments that mirror the production stack (load balancer, application server, and database)
- Conduct thorough testing
- Execute production migration across several AWS regions
Meeting these requirements would not only ensure compliance but also elevate the security and consistency of the company’s SaaS infrastructure.
The Challenge
To meet SOC 2 compliance standards, New Angle Systems LLC required its production workloads to run on EC2 instances hardened according to CIS benchmarks. This involved a complex set of needs:
- Develop Ansible-based automation for CIS hardening
- Generate CIS-compliant golden AMIs for Amazon Linux 2, CentOS, and Red Hat
- Build full test environments that mirror the production stack (load balancer, application server, and database)
- Conduct thorough testing
- Execute production migration across several AWS regions
Meeting these requirements would not only ensure compliance but also elevate the security and consistency of the company’s SaaS infrastructure.
The Challenge
To meet SOC 2 compliance standards, New Angle Systems LLC required its production workloads to run on EC2 instances hardened according to CIS benchmarks. This involved a complex set of needs:
- Develop Ansible-based automation for CIS hardening
- Generate CIS-compliant golden AMIs for Amazon Linux 2, CentOS, and Red Hat
- Build full test environments that mirror the production stack (load balancer, application server, and database)
- Conduct thorough testing
- Execute production migration across several AWS regions
Meeting these requirements would not only ensure compliance but also elevate the security and consistency of the company’s SaaS infrastructure.
The Benefits
- SOC 2 Readiness: CIS-based hardening aligned with SOC 2 requirements
- Automated Compliance: Ansible scripts ensured consistent and repeatable hardening
- Cross-Region Security: Hardened infrastructure deployed across several AWS regions
- Risk Mitigation: Fully cloned test environments ensured a safe and validated migration
- Operational Confidence: Improved control over infrastructure security and deployment standards
We partnered with IDT to enhance the security and compliance of our SaaS infrastructure, with a focus on meeting SOC 2 requirements through CIS hardening. The scope of work was highly technical and complex—ranging from automated OS hardening and AMI creation to cross-region migration of production workloads.
IDT demonstrated strong technical capabilities and a clear understanding of our security goals. Their team built a tailored automation framework, thoroughly tested each component, and delivered a smooth transition to a fully hardened and compliant AWS environment.
We appreciated their structured approach and commitment to quality throughout the project. IDT has proven to be a trusted partner, and we confidently recommend them to any organization seeking robust, security-focused AWS solutions.
Eric Saito, Principal New Angle Systems LLC
