Mapping of On-Premises Security Controls vs Major Cloud Providers

by Adrian Grigorof, CISSP, CISM, CRISC, CCSK and Marius Mocanu, CISSP, CISM, , CEH, SCF

Updated: July 19, 2019

A mapping at the very high level of on-premises security controls to native cloud services that can be used to replicate their specific role. As the cloud services tend to be more granular and overlapping in functionality, the mapping is at best approximate but it may bring some extra awareness on the options available in the cloud. Any suggestions are welcome as this chart will continue to be a work in progress.

Any feedback is appreciated!

Online version (with links to each service)

High definition PDF

High Definition SVG

Cloud vs On-prem Security Controls

4 replies
  1. Jyrki Puttonen
    Jyrki Puttonen says:

    Thanks for this great list! Only thing I spotted was that AWS Transit Gateway is not a VPN solution, it could be more accurately be described as a “cloud router”.


Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *