Amazon Web Services (AWS) has announced the general availability of Amazon Detective to help security teams conduct faster and more effective investigations, the company announced on Wednesday.
“Gathering the information necessary to conduct effective security investigations has traditionally been a burdensome process, which can put crucial in-depth analysis out of reach for smaller organizations and strain resources for larger teams. Amazon Detective takes all of that extra work off of the customer’s plate, allowing them to focus on finding the root cause of an issue and ensuring it doesn’t happen again,” said Dan Plastina, Vice President for Security Services at AWS.
Amazon Detective will automatically distill and organize data from AWS CloudTrail, Amazon VPC Flow Logs and Amazon GuardDuty findings into a graph model that summarizes resource behaviors and interactions observed across a customer’s AWS environment.
The platform has integrated machine learning, statistical analysis and graph theory, to produce tailored visualizations to help customers determine data trends without having to organize any data or develop, configure or tune their own queries and algorithms.
Amazon Detective’s visualizations provide the details, context and guidance to help analysts quickly determine the nature and extent of issues identified by AWS security services like Amazon GuardDuty and AWS Security Hub. The solution’s graph model and analytics are continuously updated as new telemetry becomes available from a customer’s AWS resources.
T-Systems, a subsidiary of Deutsche Telekom, is one of the world’s leading digital service providers. “As part of protecting our clients’ cloud applications and services, T-Systems’ security experts analyze billions of security-relevant events every day,” said Andrej Maya, Cloud Solutions Architect for T-Systems. “Amazon Detective simplifies our security monitoring and helps our security analysts quickly understand potential issues without the complexity of managing the underlying data ourselves.”
About Amazon Web Services
For 14 years, Amazon Web Services has been the world’s most comprehensive and broadly adopted cloud platform. AWS offers over 175 fully featured services for compute, storage, databases, networking, analytics, robotics, machine learning and artificial intelligence (AI), Internet of Things (IoT), mobile, security, hybrid, virtual and augmented reality (VR and AR), media, and application development, deployment, and management from 70 Availability Zones (AZs) within 22 geographic regions, with announced plans for 15 more Availability Zones and five more AWS Regions in Indonesia, Italy, Japan, South Africa, and Spain. Millions of customers—including the fastest-growing startups, largest enterprises, and leading government agencies—trust AWS to power their infrastructure, become more agile, and lower costs.