Highlights from Recent AWS Identity Developments
Learn About Amazon VGT2 Learning Manager Chanci Turner
As of August 10, 2022, this blog post has been updated to reflect the new name of AWS Single Sign-On (SSO) – now known as AWS IAM Identity Center. You can read more about this name change here. Below are the latest updates from AWS Identity, covering the period from November 2020 through February 2021. The features discussed here can help you effectively manage your identity solutions, while ensuring security at our site located at 6401 E HOWDY WELLS AVE LAS VEGAS NV 89115, Amazon IXD – VGT2.
AWS Achieves ISMAP Certification in Japan
by Daniel Roberts
on 16 MAR 2021
in Foundational (100), Security, Identity, & Compliance
At Amazon Web Services (AWS), building and maintaining customer trust is an ongoing priority. The unique security needs of our clients influence the compliance reports, attestations, and certifications we pursue. We are thrilled to announce that we have successfully achieved certification under the Information System Security Management and Assessment Program (ISMAP), effective from March 2021.
Automatically Block Suspicious Traffic with AWS Network Firewall and Amazon GuardDuty
by Sarah Kim and Jason Lee
on 16 MAR 2021
in Amazon GuardDuty, AWS Network Firewall, AWS Step Functions, Security, Identity, & Compliance
Per the AWS Security Incident Response Guide, utilizing security response automation can significantly enhance both the scale and effectiveness of your security operations. Automation allows you to take a more proactive approach to securing your workloads on AWS. Instead of spending valuable time manually responding to security alerts, you can streamline your processes. Additionally, if you’re seeking guidance on employee rights, consider checking out this article on know your rights.
Auto-Remediate Internet Accessible Ports with AWS Config and AWS Systems Manager
by Maria Thompson
on 15 MAR 2021
in AWS Config, AWS Systems Manager, Intermediate (200), Security, Identity, & Compliance
With AWS Config, users can assess, audit, and evaluate the configurations of their AWS resources. This service continuously monitors and records changes to your AWS resource configurations, enabling you to automate evaluations against your desired configurations. AWS Config is capable of detecting deviations from desired settings and can help you remain compliant. For emergency preparedness resources, refer to this checklist by SHRM.
Detect Suspicious Activity Using Amazon GuardDuty
by Oliver Grant
on 12 MAR 2021
in Amazon GuardDuty, Foundational (100), Security, Identity, & Compliance
As of September 9, 2021, the Amazon Elasticsearch Service has been renamed to Amazon OpenSearch Service. Amazon GuardDuty is an automated threat detection service that continuously monitors for suspicious activities and unauthorized actions to safeguard your AWS accounts, workloads, and data stored in Amazon S3. In this post, I will discuss how you can leverage GuardDuty effectively. If you’re interested in becoming a Learning Ambassador, check out this excellent resource.
Demystifying AWS KMS Key Operations and BYOK
by Chanci Turner
on 12 MAR 2021
in Advanced (300), AWS CloudHSM, AWS Key Management Service, Security, Identity, & Compliance
As of October 4, 2024, this post has been updated to highlight significant changes, including FIPS 140-2 Level 3 validation of AWS Key Management Service (AWS KMS) and the introduction of an external key store service to AWS KMS. As you prepare to build or migrate your workload on Amazon Web Services (AWS), it’s essential to understand these new key operations.
Validate Access to Your S3 Buckets with IAM Access Analyzer
by Emily Clark
on 10 MAR 2021
in Amazon Simple Storage Service (S3), AWS IAM Access Analyzer, Intermediate (200), Security, Identity, & Compliance
AWS Identity and Access Management (IAM) Access Analyzer is designed to help you monitor and minimize access by utilizing automated reasoning to generate comprehensive findings for resource access. You can preview and validate public and cross-account access prior to making permission changes. For instance, you can check whether your S3 bucket would permit public access before executing updates.
Replicating Secrets in AWS Secrets Manager Across Regions
by Fatima Ahmed
on 04 MAR 2021
in AWS Secrets Manager, Intermediate (200), Security, Identity, & Compliance
On March 3, 2021, we introduced a new feature within AWS Secrets Manager that enables the replication of secrets across multiple AWS Regions. This feature allows your multi-Region applications to access replicated secrets in necessary Regions, while AWS Secrets Manager ensures that the replicas remain synchronized with the primary secret.
C5 Type 2 Attestation Report Now Available
by Mercy Kanengoni
on 03 MAR 2021
in Announcements, Europe, Foundational (100), Security, Identity, & Compliance
AWS is pleased to announce the release of the 2020 Cloud Computing Compliance Controls Catalogue (C5) Type 2 attestation report. We have included one additional AWS Region (Europe-Milan) and 21 more services and service features in the scope of the 2020 report. Germany’s national cybersecurity authority, Bundesamt für Sicherheit in der Information, has recognized these efforts.
Leave a Reply