Amazon Macie is a fully managed data security and data privacy service provided by AWS. It helps you automatically discover, classify, and protect sensitive data, particularly personal data (such as personally identifiable information, or PII), stored in Amazon S3. Macie uses machine learning (ML) and pattern matching to identify sensitive data and provide insights into…
Category: aws
Security tools
Feature/Service Amazon Detective Amazon GuardDuty Amazon Inspector AWS Security Hub Purpose Security investigation and analysis tool Threat detection and continuous security monitoring Vulnerability scanning and assessment of EC2 instances and containers Centralized security management and compliance monitoring Primary Function Helps investigate and analyze security findings from multiple data sources Detects malicious or unauthorized activity within…
AWS Firewall Manager
AWS Firewall Manager is a security management service offered by AWS that allows you to centrally configure and manage firewall rules across your AWS environment. It’s primarily used to manage and enforce security policies across multiple accounts, regions, and VPCs (Virtual Private Clouds) within an AWS Organization. Key Features: Centralized Firewall Management: You can create…
AWS Network Firewall
AWS Network Firewall is a managed, flexible, and scalable firewall service designed to provide network traffic filtering for Amazon Virtual Private Cloud (VPC). It helps protect your VPCs and applications by controlling both inbound and outbound traffic. AWS Network Firewall is integrated with other AWS security services, enabling you to build a comprehensive security posture…
AWS Shield
WS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS from network and application layer attacks. AWS Shield helps protect applications against the most common types of DDoS attacks, ensuring that your applications remain available and performant even during large-scale attacks. AWS Shield offers two levels of…
AWS WAF
AWS WAF is a managed web application firewall service that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. It allows you to create custom security rules to block or allow traffic based on specific conditions, such as IP addresses, HTTP headers, request body,…
AWS Security Token Service
AWS Security Token Service (STS) is a web service that allows you to request temporary, limited-privilege credentials for AWS services. These credentials are typically used to authenticate users or services for a specific period of time, allowing them to access AWS resources securely without using long-term IAM credentials. STS helps manage and secure access to…
AWS Identity Center
AWS Identity Center (formerly AWS Single Sign-On) is a service that enables centralized identity and access management across multiple AWS accounts and cloud applications. It provides a way to manage user authentication, authorization, and access control efficiently. Key Features of AWS Identity Center: Common Use Cases: AWS Identity Center consists of several key components that…
AWS IAM
AWS Identity and Access Management (IAM) is a web service that helps you securely manage access to AWS resources. IAM enables you to create and manage users, groups, and permissions, allowing you to control access to AWS services and resources in a secure and flexible manner. Key Features of AWS IAM: User and Group Management:…
Amazon SageMaker
Amazon SageMaker is a fully managed service provided by AWS that enables developers and data scientists to quickly build, train, and deploy machine learning (ML) models at scale. It provides a broad set of tools and capabilities that streamline the machine learning workflow, making it easier to develop and deploy ML solutions, from data processing…