Integration with CloudWatch & CloudTrail

Start course
Overview
DifficultyIntermediate
Duration56m
Students814
Ratings
4.9/5

Description

With the ever increasing threats of attacks against the integrity, confidentiality, and availability of your data within your organization, the need to ensure strict security procedures and processes is paramount and learn how to use Amazon Inspector is key.

AWS offers a wide range of security services to help you achieve the level of security that you need to enforce within your environment, and the Amazon Inspector service is just one of those that can help.

This service is used to help you find security vulnerabilities within your EC2 instances and any applications running on them, during any stage of development and deployment.

With its ability to automatically detect known and common security issues across a range of rules of compliance, Amazon Inspector can also provide details on how to remediate these potential weaknesses in your infrastructure. This makes the service a key asset within your security tool set.

This course looks at what the service is and does, and how it does it by going into detail of all components involved. Demonstrations will also be provided in its configuration.

Lectures included:

- What is Amazon Inspector?: This lecture explains at a high level what Amazon Inspector is and why you may want to use it

- Components of Amazon Inspector: This lecture defines the main components of the service and how these fit together

- Demonstration: How to Configure Amazon Inspector: This demonstration shows how to get started and how to configure the service

- Demonstration: Working with findings: This lecture demonstrates how to view the different Amazon Inspector findings following an assessment

- Integration with CloudWatch & CloudTrail: This lecture explains how Amazon Inspector can be monitored with CloudWatch and CloudTrail

- Service Limitations and Costs: This lecture explains the limitations of the service in addition to how costings are calculated

- Summary: This lecture summarizes points learned from the previous lectures within the course

Transcript

Resources & Links used in this Lecture

Amazon CloudWatch Course: https://cloudacademy.com/amazon-web-services/amazon-web-services-cloudwatch-course/

AWS CloudTrail Course: https://cloudacademy.com/amazon-web-services/aws-cloudtrail-introduction-course/

---------------------------------------------------------------------------------------------------------------------------------------------

Transcript:

Hello and welcome to this very short lecture where I want to show you how Amazon Inspector integrates with Amazon CloudWatch and AWS CloudTrail.

For more information on both of these services, please see our existing courses here on both services.

Being able to monitor and track the performance of a service and trace its actions from an audit perspective is invaluable. And Amazon Inspector integrates seamlessly with both CloudWatch and CloudTrail which performs these functions.

You can use Amazon CloudWatch to monitor and inspect agents against specific metrics for both assessment targets and assessment templates as shown. There is also an aggregate metric which will count the number of assessment runs within your account. These metrics allow you to monitor the performance and activity of Amazon Inspector, providing a greater insight into specific statistics.

From an AWS CloudTrail perspective, all API calls that are performed by Inspector are logged with CloudTrail. This allows you to understand by who, what, and when specific actions were carried out, which are all saved and recorded within the CloudTrail log files that are stored in S3.

These integration elements allow for additional auditing and monitoring to take place throughout your security assessments within your environment which is always an added benefit from a governance and security audit perspective. That now brings us to the end of this lecture.

Coming up next, I want to highlight the limitations of the Amazon Inspector service.

About the Author

Students58223
Labs1
Courses55
Learning paths39

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data centre and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 50+ courses relating to Cloud, most within the AWS category with a heavy focus on security and compliance

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.