Security and compliance automation

AWS Security and Cost Management Concepts

Dev Bhosale

Principal Data & Cloud Architect

AWS Security and compliance tools

List of security and compliance tools

AWS Security and Cost Management Concepts

Long checklist vs a dashboard

Car checklist

AWS Security and Cost Management Concepts

AWS Security Hub Overview

Showing non-compliant items in Security Hub

AWS Security and Cost Management Concepts

AWS Security Hub Overview

security hub architecture

  • Security best practice checks
  • Aggregates alerts across 60+ services and integrations
  • Supports automated remediation
AWS Security and Cost Management Concepts

AWS Trusted Advisor

AWS Trusted Advisor

AWS Security and Cost Management Concepts

AWS Trusted Advisor

Trusted advisor

AWS Security and Cost Management Concepts

Cost optimization

Cost savings with trusted advisor

  • Trusted Advisor can detect over-provisioned servers and idle resources
AWS Security and Cost Management Concepts

Limitations and differences

  • Governance and compliance is a team sport

  • Trusted Advisor checks on security, cost management, fault tolerance, and performance

  • AWS tools make the job easier - similar to a cruise control

  • Trusted Advisor checks are not customizable

Differences between security hub and trusted advisor

AWS Security and Cost Management Concepts

GuardDuty

GuardDuty

  • Detects threats in AWS environments
  • Generates detailed, actionable findings
  • Operates independently, no performance impact
AWS Security and Cost Management Concepts

Let's practice!

AWS Security and Cost Management Concepts

Preparing Video For Download...