AWS has numerous services that offer logging capabilities that capture meaningful and vital information when it comes to analyzing the source of a threat and how to prevent it. Where possible, when using your chosen services, you should enable logging. This is often overlooked, which can be a huge regret for organizations should the worst happen. With active logging, you will have a much higher chance of being able to rectify an incident quickly and efficiently, or even prevent it from occurring by spotting patterns and trends.
Logging offers you the opportunity to baseline your infrastructure of what's normal and what can be considered abnormal operations. This helps identify and isolate anomalies easily, especially when combined with third-party logging and analysis tools.
Again, having logs running continuously and automatically by the supported AWS services allows you to view the state of your environment prior to, during, and after an incident. This helps you gather...