Category: Analytics

Generative artificial intelligence (AI) is now a household topic and popular across various public applications. Users enter prompts to get answers to questions, write code, create images, improve their writing, and synthesize information. As people become familiar with generative AI, businesses are looking for ways to apply these concepts to their enterprise use cases in […]

Part 3 of a 3-part series Part 1 – Aggregating, searching, and visualizing log data from distributed sources with HAQM Athena and HAQM QuickSight Part 2 – How to visualize HAQM Security Lake findings with HAQM QuickSight This is the final part of a three-part series on visualizing security data using HAQM Security Lake and […]

Part 2 of a 3-part series Part 1 – Aggregating, searching, and visualizing log data from distributed sources with HAQM Athena and HAQM QuickSight Part 3 – How to share security telemetry per Organizational Unit using HAQM Security Lake and AWS Lake Formation In this post, we expand on the earlier blog post Ingest, transform, […]

In this post, we explain what the three most important AWS WAF rate-based rules are for proactively protecting your web applications against common HTTP flood events, and how to implement these rules. We share what the Shield Response Team (SRT) has learned from helping customers respond to HTTP floods and show how all AWS WAF […]

September 9, 2021: HAQM Elasticsearch Service has been renamed to HAQM OpenSearch Service. See details. It’s a common use case for customers to integrate identity providers (IdPs) with HAQM Elasticsearch Service (HAQM ES) to achieve single sign-on (SSO) with Kibana. This integration makes it possible for users to leverage their existing identity credentials and offers […]

September 9, 2021: HAQM Elasticsearch Service has been renamed to HAQM OpenSearch Service. See details. HAQM Elasticsearch Service (HAQM ES) is a fully managed service that you can use to deploy, secure, and run Elasticsearch cost-effectively at scale. The service provides support for open-source Elasticsearch APIs, managed Kibana, and integration with Logstash and other AWS […]

September 9, 2021: HAQM Elasticsearch Service has been renamed to HAQM OpenSearch Service. See details. HAQM Inspector helps to improve the security and compliance of your applications that are deployed on HAQM Web Services (AWS). It automatically assesses HAQM Elastic Compute Cloud (HAQM EC2) instances and applications on those instances. From that assessment, it generates […]

September 9, 2021: HAQM Elasticsearch Service has been renamed to HAQM OpenSearch Service. See details. HAQM Elasticsearch Service (HAQM ES) provides fine-grained access control, powered by the Open Distro for Elasticsearch security plugin. The security plugin adds Kibana authentication and access control at the cluster, index, document, and field levels that can help you secure […]

December 4, 2020: This post has been updated to include links to the CloudFormation templates used in the solution. In this post, I demonstrate a method for collecting and sharing threat intelligence between HAQM Web Services (AWS) accounts by using AWS WAF, HAQM Kinesis Data Analytics, and HAQM EventBridge. AWS WAF helps protect against common […]

In this post, I will show you how to use AWS Lambda to automate PCI DSS (v3.2.1) evidence generation, and daily log review to assist with your ongoing PCI DSS activities. We will specifically be looking at AWS CloudTrail Logs stored centrally in HAQM Simple Storage Service (HAQM S3) (which is also a Well-Architected Security […]