MSSP - Managed Security Service Provider

compact_records_logo

Compact Records is a leading Portuguese music distributor, serving as an exclusive representative for national and international artists. The company manages a vast inventory of vinyl records, CDs, and other music-related products, operating as both a wholesale vendor and a generalist warehouse. As the music industry increasingly shifts toward digital transactions and cloud-based inventory management, Compact Records relies on AWS to support its operations securely and efficiently.

www.compactrecords.com

Executive Summary

Compact Records, a leading Portuguese music distributor, needed to protect its expanding digital footprint in the cloud as it shifted toward online commerce and cloud-based inventory management. With increasing cyber threats and growing regulatory obligations, the company turned to Magic Beans to implement and manage a robust and scalable cloud security solution.

Magic Beans provided threat monitoring, automated vulnerability management, compliance reporting, and incident response. Through a tailored deployment of AWS-native services including Amazon GuardDuty, AWS Security Hub, AWS WAF, KMS, AWS CloudTrail, and AWS Inspector, Compact Records significantly strengthened its security posture. Beyond implementation, Magic Beans continues to deliver managed detection and response (MDR), compliance enforcement, and ongoing security governance, ensuring Compact Records is protected.

Customer Challenge

Compact Records needed to address several critical security concerns:

  • Lack of centralized security visibility, making it difficult to track threats and vulnerabilities across AWS workloads.
  • Data protection requirements to secure digital transaction records and customer information.
  • Compliance enforcement with industry regulations and internal security policies.
  • Threat detection and mitigation to protect against unauthorized access and cyber threats.
  • Web application security risks, including potential attacks on their online store and partner portals.

Without a robust security framework, Compact Records faced risks such as data breaches, financial losses, and reputational damage, which could impact its ability to serve artists and customers effectively.

Partner Solution

To enhance Compact Records' cloud security posture, Magic Beans implemented the following AWS services:

  1. AWS Security Hub – Provided centralized security management and compliance reporting.
  2. Amazon GuardDuty – Monitored AWS accounts for unauthorized access, anomalous activity, and potential threats.
  3. AWS Inspector – Conducted automated vulnerability assessments to identify and remediate security risks.
  4. AWS Web Application Firewall (WAF) – Protected Compact Records' online store and customer portals from common web exploits.
  5. AWS Key Management Service (KMS) – Ensured encryption of sensitive transaction and customer data.
  6. AWS CloudTrail – Enabled comprehensive logging and audit trails for security and compliance monitoring.

Incident Response & Threat Management

Magic Beans monitors Compact Records' AWS accounts continuously. All GuardDuty and Inspector findings are analyzed. When a threat is detected:

  1. Triage: Events are categorized using risk scoring.
  2. Investigation: Analysts correlate findings with CloudTrail and Security Hub data to assess impact.
  3. Escalation: Critical events are escalated to the Compact Records security contact within SLA.
  4. Remediation: Automated or manual remediation actions are performed based on playbooks (e.g., isolate EC2, revoke IAM role).
  5. Reporting: Post-incident reports and root cause analysis are delivered to Compact Records.

 

Security Governance & Continuous Improvement

Magic Beans implemented a governance framework to ensure Compact Records' cloud security environment stays aligned with business risk tolerance and AWS best practices:

  • Compliance Reports: Covering CIS benchmark adherence, IAM policy drift, encryption status, and security findings.
  • Security Reviews: Joint strategy sessions between Compact Records and Magic Beans to review posture, changes, and new risks.
  • Risk Management Backlog: A shared remediation backlog tracks open issues from vulnerability scans and misconfigurations.
  • Change Control: All major changes to WAF rules, IAM permissions, and security group policies are reviewed through a governed change process.

 

Architectural Design

compact_records_arch1_mspp

Figure 1 - Compact Records Architecture

Results and Benefits

As a result of the Magic Beans Managed Security Services, Compact Records was able to achieve:

  • Improved Threat Detection: GuardDuty and Security Hub reduced security risks, ensuring real-time visibility into threats.
  • Enhanced Compliance: CloudTrail and Security Hub simplified audit processes, reducing compliance reporting time.
  • Data Protection & Encryption: AWS KMS secured sensitive business data, preventing unauthorized access.
  • Stronger Web Security: AWS WAF blocked several malicious requests per day, protecting e-commerce operations.
  • Operational Efficiency: Automated security alerts and vulnerability management minimized manual security tasks.

Outcomes & Metrics

MetricOutcome
Mean Time to Detect (MTTD)Reduced to under 5 minutes via continuous GuardDuty and Security Hub monitoring
Mean Time to Respond (MTTR)Achieved an average of 12 minutes for P1 incidents
WAF Blocked RequestsOver 10k malicious requests per day mitigated at the edge
Compliance CoverageAchieved 80% of Security Standards within the first 60 days
Vulnerability Remediation TimeReduced by 70% through automated Inspector scans and ticketing integration
Manual Security TasksReduced by 60% through automation of triage, remediation, and reporting

Ready to get started?

To learn more about how AWS and Magic Beans can help your business, contact us at team@magicbeans.pt

Portugal:

Lisboa
Rua Dr. António Cândido, 10 - 1º Andar
1050-076, Lisboa

Porto
Avenida de França, n.º 20, sala 507
4050-275, Porto

Óbidos
Parque Tecnológico de Óbidos, Edifícios Centrais, Rua da Criatividade
2510-216, Óbidos

Country Phone:
(+351) 308 814 821
Country Email:
team@magicbeans.pt

 
Netherlands:

Amsterdam
Weteringschans 165 C
1017 XD, Amsterdam

Country Email:
team@magicbeans.nl

Spain:

Barcelona
Ronda de Sant Pere, 16, Bajos
08010, Barcelona

Madrid
Paseo de la Habana, 9-11, Bajos
28036, Madrid

Country Phone:
(+34) 609 129 074
Country Email:
info@magicbeans.es

 
Belgium:

Brussels
Avenue Louise 54
Ixelles, 1050, Belgium

Country Email:
team@magicbeans.be

 

Italy:

Trieste
Riva Tommaso Gulli 12
34123 (TS)

Country Email:
info@magicbeans.it

© Copyright - | magic beans | All Rights Reserved | Powered by: valkirias