Automatable Security Services?
- Security Hub
- Trusted Advisor
- Threat detection for accounts / workloads
- Findings can be sent to s3 with Lambda
- S3 stuff
- Discover and protect sensitive data
- Sec / compliance of apps
- Also Ec2 instances
- Findings can be piped to SNS
- What’s a “hub”? Consolidates other services.
- Receives from the above ^ 3 services
- Security best practice checks
- Can delegate to systems manager for automated remediation
- Aggregate security findings into a single S3 bucket