Upcoming Webinar
Cayosoft Shows How Forest Recovery Tech Addresses Survey Issues
Join this webinar and not only learn about what your peers are doing, but also learn about a new patent-pending modern approach to AD forest recovery from Cayosoft.
New episode!
The Scoop on Loop: The Latest Innovations Directly From Microsoft!
Darrell Webster speaks to Rebecca Keys, a Program Manager from the Microsoft Loop team.
Turn Data Protection into an MRR Growth Engine
Security for your customers, revenue for your MSP practice. Access key insights on how to scale your practice with SkyKick’s new eGuide.
MSP eGuide to Package, Sell and Deliver M365 Security Services
Based on input from our top-performing MSPs, SkyKick prepared the MSP Guide to help you navigate the security landscape.

Amazon Detective Gets New Features to Bolster Analysis of AWS Security Findings

Last week, Amazon Web Services (AWS) announced that its Amazon Detective service is getting a new integration with AWS Security Hub. The new feature allows organizations to quickly and efficiently investigate AWS security issues.

Amazon Detective is a service that enables organizations to investigate security issues and suspicious activities in their AWS resources and accounts. The security service collects log data from Amazon GuardDuty, Amazon CloudTrail, Amazon Virtual Private Cloud (VPC) Flow Logs, and other AWS services. Amazon Detective uses AI to create visualizations that provide detailed insights into security incidents.

With this release, security teams can use Amazon Detective to find the root cause and impact of findings coming from both GuardDuty and Security Hub. The list of new data sources includes Amazon Macie, Amazon Inspector, and AWS Identity and Access Management (IAM) Access Analyzer.

Amazon Detective Gets New Features to Bolster Analysis of AWS Security Findings

How to enable AWS Security Findings in the Amazon Detective Console

To get started, customers will need to head over to the Detective Management Console in order to configure AWS Security Findings investigations. From there, click Settings >> General >> Edit to enable Detective for AWS Security Findings. The feature will analyze relevant data to detect connections between log events and activities.

Pricing details and limitations

Amazon Detective investigation support is accessible to both new and existing customers in AWS Regions where the service is currently available. This release aims to help IT admins to detect potential security threats and vulnerabilities in their corporate networks. The pricing depends on how much data the service ingests from AWS resources. If you’re interested, you can sign up for a 30-day free trial of Amazon Detective today.

As of this writing, the Findings groups section of the Detective console doesn’t show Security Hub’s investigations. Going forward, the company plans to add support for the new AWS security services integrations in Finding groups. However, there is no ETA on when this capability will be available for customers.

by Rabia Noureen
May 22, 2023

Rabia comes from a solid IT background and has been writing professionally about Microsoft products and other technology for four years. Rabia has also written for OnMSFT.com as well as Windows Report. She is always up to date on the latest trends in...

What is AWS Lambda?

Jun 23, 2023
What is Amazon Kinesis Data Firehose?

Jul 14, 2023
AWS Certifications: A Complete Guide

Jul 31, 2023

Take our survey

PETRI NEWSLETTERS

Join Petri Insider

Create a free account today to participate in forum conversations, comment on posts and more.