Compliance and regulatory:
- Organization rules and laws to abide.
- Compliance and regulatory frameworks, guidelines and best practices.
Products
AWS Artifact
Certifications reviews and audit reports
Customer Compliance Center
- identify regulatory requirements
- browse country/region specific requitements
- AWS answers to key compliance questions
- auditing and security checklist
- discover how other companies solve compliance and regulatory challenges
AWS Audit Manager
- continuous collects data to prepare for audits
- ensure compliance with regulatory standards
- readly to build audit reports
AWS Config
tracks and reports changes to AWS Resources
Preventive
AWS Web Application Firewall (WAF)
monitors http requests (sql injects, xss, etc)
Web ACL
- Resources to monitor
- Rules – inspection criteria
- Action – Allow/Block/Count/Captcha
AWS Shield
Detects and mitigates DDOS attacks.
AWS Network Firewall
Protects traffic in and out the VPC (stateful)
Detection
AWS Inspector
Inspects workloads (EC2, ECR, Lambda,..) for vulnerabilities and network exposure
Amazon GuardDuty
Monitors abnormal activity and detects threats
Amazon Detective
- Ingest data from VPC flow, Could Trails, etc
- Uses machine learning and statistical analysis to create advance visualization
- Suitable to investigate security events
AWS Config
Tracks and audits the configuration of AWS Resources.
AWS Security Hub
- Uses Amazon Inspector and Amazon GuardDuty.
- Automates security checks and brings security alerts into a central location.
- Can perform validation against AWS security best practices.
Amazon Security Lake
- Aggregates logs in a central location
- Efficient queries using parquet format
- Open Cybersecurity Schema Framework (OCSF)
AWS Macie
- Works in S3 buckets
- Uses pattern matching and machine learning to automatically discover sensitive data.
- Generates an report of S3 buckets and scans for objects that can contain sensitive data.
Management
Amazon Firewall Manager
- manages AWS Shield, AWS WAF and AWS Network Firewall
- manages rules across applications, accounts and organizations
- central management
AWS Resource Access Manager
Enables sharing resources across multiple accounts
AWS Cognito
Implement customer identity and access management
AWS Identity and Access Management (IAM)
Manages access to AWS resources
AWS IAM Identity Center
Manages multiple accounts, sign-in and security
AWS Secrets Manager
Storage and manage credentials, can configure secret rotation.
Application dynamically pull the secrets from service API’s.
AWS Certificate Manager (ACM)
manages SSL certificates (create, store, renew)
AWS Private Certificate Authority
Private CA (cloud/on-premises) managed by AWS
AWS Key Management Service (KMS)
Handles keys, key rotation, permits granularity control
AWS CloudHSM
- Cloud Hardware Security Model (HSM)
- Store keys and performs crypto operations