Skip to main content

Cloud Security

Audience: Cloud Security Engineers, Platform Engineers, and Security Operations teams.

Scope: This section covers cloud security governance, posture management, and compliance using Kion.

ResourcePurpose
Kion PortalCloud governance platform
Kion SupportOfficial documentation
AIP Request FormNew account requests

Kion Overview

Kion is a Cloud Posture Security Management (CPSM) platform that provides:

  • Single pane of glass for multi-cloud security posture
  • Financial tracking and budget management
  • Compliance tracking with customizable standards
  • Cloud Access Roles (CARs) for federated access
  • Automated remediation capabilities

Supported Platforms

PlatformStatus
AWS✅ Active
Microsoft Azure🔄 Coming Soon
Google Cloud🔄 Coming Soon

Documentation Sections

Kion Administration
  • Login & Authentication — Azure AD SSO integration
  • Account Federation — Accessing cloud accounts via CARs
  • User Groups — Managing access and permissions
Account Workflow
  • AIP Request Form — Customer-facing request process
  • ServiceNow Integration — Request processing pipeline
  • Terraform Modules — Infrastructure as Code for account creation
AWS Security
  • Service Control Policies — Testing and deploying SCPs
  • Cloud Rules — Compliance enforcement

Account Workflow Overview

GitHub Repositories

RepositoryPurpose
it-cloud-account-hubAccount definitions and Terraform orchestration
it-ae-tfmod-aws-accountAWS account creation module
it-ae-tfmod-kion-accountKion resource creation module
it-ae-svc-kion-configKion configuration and SCPs