Security coffee: Keep your analysts on top of their game

March 2, 2022

This Twitch session uncovers services that operationalize your analysts’ ability to correlate large amounts of data across multiple AWS security domains by enabling your security personnel in threat hunting, alert triage, and incident investigation. Security analysts are under constant pressure to take meaningful action against security incidents while avoiding alert fatigue. You can cut down on response time by enabling your security personnel to have access to critical data that gives them a better understanding of who, what, and where during these events.

Security coffee: Keep your analysts on top of their game

Building custom frameworks with AWS Audit Manager

Confidential Computing on AWS: the AWS Nitro System and AWS Nitro Enclaves

Automation workflows with Amazon Macie

The journey to least privilege on AWS

Secure your APIs in API Gateway

Builders patching at scale: It doesn't have to be hard

Detecting ransomware with AWS security services

Scaling access management for enterprise customers

Designating a GuardDuty Delegated Administrator

Designating a Security Hub Administrator Account

How AWS Security Hub works with IAM

Example Service Control Policies

Product Integrations in AWS Security Hub

Using Service-Linked Roles for AWS Config

Security Hub Workshop

Techniques for Writing Least Privilege IAM Policies

IAM Access Analyzer Makes it Easier to Implement Least Privilege Permissions

AWS Security Hub Supports Bidirectional Integration with Atlassian Jira Service Management

AWS Security Hub Adds Support for Cross-Region Aggregation of Findings

AWS Trusted Advisor now integrates with AWS Security Hub