Security and compliance automation

Concetti di sicurezza e gestione dei costi su AWS

Dev Bhosale

Principal Data & Cloud Architect

AWS Security and compliance tools

List of security and compliance tools

Long checklist vs a dashboard

Car checklist

AWS Security Hub Overview

Showing non-compliant items in Security Hub

AWS Security Hub Overview

security hub architecture

Security best practice checks
Aggregates alerts across 60+ services and integrations
Supports automated remediation

AWS Trusted Advisor

AWS Trusted Advisor

AWS Trusted Advisor

Trusted advisor

Cost optimization

Cost savings with trusted advisor

Trusted Advisor can detect over-provisioned servers and idle resources

Limitations and differences

Governance and compliance is a team sport
Trusted Advisor checks on security, cost management, fault tolerance, and performance
AWS tools make the job easier - similar to a cruise control
Trusted Advisor checks are not customizable

Differences between security hub and trusted advisor

GuardDuty

GuardDuty

Detects threats in AWS environments
Generates detailed, actionable findings
Operates independently, no performance impact

Let's practice!

Concetti di sicurezza e gestione dei costi su AWS

Preparing Video For Download...