AWS Public Sector Blog

Automatically Discover, Classify, and Protect Your Data

In our post, Building a Cloud-Specific Incident Response Plan, we walked through a hypothetical incident response (IR) managed on AWS with the Johns Hopkins University Applied Physics Laboratory (APL). With the recent launch of HAQM Macie, a new data classification and security service, you have additional controls to understand the type of data stored in your HAQM Simple Storage Service (HAQM S3). HAQM Macie can also help you meet your compliance objectives, with the ability to set up automated mechanisms to track and report security incidents.

HAQM Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. HAQM Macie recognizes sensitive data such as personally identifiable information (PII) or intellectual property, and provides you with dashboards and alerts that give visibility into how this data is being accessed or stored. The fully managed service continuously monitors data access activity for anomalies, and generates detailed alerts when it detects risk of unauthorized access or inadvertent data leaks.

Benefits of HAQM Macie for public sector organizations include:

  • Superior Visibility of Your Data – HAQM Macie makes it easy for security administrators to have management visibility into data storage environments, beginning with HAQM S3, with additional AWS data stores coming soon.
  • Simple to Set Up, Easy to Manage – Getting started with HAQM Macie is fast and easy. Log into the AWS console, select the HAQM Macie service, and provide the AWS accounts you would like to protect.
  • Data Security Automation Through Machine Learning – HAQM Macie uses machine learning to automate the process of discovering, classifying, and protecting data stored in AWS. This helps you better understand where sensitive information is stored and how it’s being accessed, including user authentications and access patterns.
  • Custom Alert Monitoring with Cloudwatch – HAQM Macie can send all findings to HAQM CloudWatch Events. This allows you to build custom remediation and alert management for your existing security ticketing systems.

Customers including Edmunds, Netflix, and Autodesk are using HAQM Macie to provide insights that will help them tackle security challenges. Learn more about how to get started with HAQM Macie. If you are a first-time user of HAQM Macie, we recommend that you begin by reading the Macie documentation.

Subscribe to the AWS Public Sector Blog newsletter to get the latest in AWS tools, solutions, and innovations from the public sector delivered to your inbox, or contact us.