AWS Security Incident Response Technical Guide

This guide presents an overview of the fundamentals of responding to security incidents within a customer’s AWS Cloud environment. It focuses on an overview of cloud security and incident response concepts, and identifies cloud capabilities, services, and mechanisms that are available to customers who are responding to security issues.

This paper is intended for those in technical roles and assumes that you are familiar with the general
principles of information security, have a basic understanding of incident response in your current on-premises environments, and have some familiarity with cloud services.