AWS helps users maintain their security with 2 key services: CloudTrail and AWS Config. CloudTrail logs every API call within a user’s environment. AWS Config provides inventory, configuration history, and change notifications. The security challenge, of course, is not too little data. Instead, the challenge is too much data – in the raw – and this is where CloudCheckr, an AWS Advanced Technology Partner, helps.
CloudCheckr ingests user data through read-only credentials to leverage this trove of AWS data. It parses the JSON logs from CloudTrail. It collects the notifications from AWS Config. It scans user deployments and collects CloudWatch metrics.
CloudCheckr then surfaces the most critical and actionable information. It allows users to configure alerts for security events, identify configuration errors, search through logs for resource and API activity, and understand and visualize changes within their deployment.
VPC and IAM security group mapping enables users confidently assess resources and permissions. CloudCheckr’s automated perimeter analysis presents results in a hierarchical order so that users quickly identify entry points both into their VPC and into resources that reside outside of a VPC.
Hundreds of commercial and public sector organizations leverage these CloudCheckr features to ensure that they are fulfilling all of their security policies and compliance mandates – whether PCI, HIPAA, ISO 2700, NIST 800-53, or internal frameworks.
CloudCheckr is currently offering an extended 30 day free trial. Try it and start improving your security today!

Comments have been disabled for this post