AWS Steps Up Security offerings for enhanced visibility & control
In its continuous endeavour to listen to customers, Amazon Web Services has launched a slew of services aimed at addressing security concerns of customers running applications on its platform.
Security on Amazon Cloud is a shared responsibility. The underlying physical infrastructure is AWS responsibility and the company has achieved major certifications and compliance including SOC 3, ISO 27018 and PCI DSS 3.2 Level 1 Service Provider, the highest level of assessment.
However, security is also dependent on how customers deploy applications, who you allow access for different activities, how you configure the architecture.
To facilitate customers to easily achieve higher levels of security, AWS has launched several managed services that address specific requirements of customers. Let’s take a closer look how these services are helping customers.
AWS Guardduty: Amazon GuardDuty is a managed threat detection service that continuously monitors and protects AWS accounts and workloads from malicious or unauthorized behaviour. The service analyses billions of events across AWS accounts and uses machine learning to detect anomalies and identify suspected attackers. Once threat is detected in the form of unusual API calls or potentially unauthorized deployments, it sends alerts.
AWS Firewall Manager: AWS Firewall Manager allows centralized control over organization’s WAF security settings across multiple AWS accounts in different regions. This equips security teams to respond quickly and uniformly to threats and attacks. The automated policy enforcement via AWS WAF settings across accounts and applications empowers the security team to not only ensure compliance by new and existing deployments but also identify those that do not comply.
AWS Macie: AWS Macie is a fully managed service which leverages machine learning to protect sensitive data in Amazon S3 by examining how data is being used and identifying anomalies. The service continuously monitors new data that comes into S3 and spots unusual access patterns which is then highlighted on a central dashboard.
AWS Secrets Manager: AWS Secrets Manager enables to easily rotate, manage and retrieve database credentials, API keys, and other secrets by making an API call eliminating the need to hardcode sensitive information in plain text. The service is natively integrated with Amazon RDS for MySQL, PostgreSQL, and Amazon Aurora.
Noventiq is a premium AWS Managed Services Partner with extensive experience in designing highly secure and scalable deployments for customers with very high security requirements. We have in depth technical expertise and understanding about AWS services.