You're reading from Cloud Security Handbook Find out how to effectively secure cloud environments using AWS, Azure, and GCP

Product type Paperback

Published in Apr 2022

Publisher Packt

ISBN-13 9781800569195

Length 456 pages

Edition 1st Edition

Tools

AWS

Concepts

Cloud Computing

Author (1):

Eyal Estrin

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: Securing Infrastructure Cloud Services

2. Chapter 1: Introduction to Cloud Security FREE CHAPTER

3. Chapter 2: Securing Compute Services

4. Chapter 3: Securing Storage Services

5. Chapter 4: Securing Networking Services

6. Section 2: Deep Dive into IAM, Auditing, and Encryption

7. Chapter 5: Effective Strategies to Implement IAM Solutions

8. Chapter 6: Monitoring and Auditing Your Cloud Environments

9. Chapter 7: Applying Encryption in Cloud Services

10. Section 3: Threats and Compliance Management

11. Chapter 8: Understanding Common Security Threats to Cloud Services

12. Chapter 9: Handling Compliance and Regulation

13. Chapter 10: Engaging with Cloud Providers

14. Section 4: Advanced Use of Cloud Services

15. Chapter 11: Managing Hybrid Clouds

16. Chapter 12: Managing Multi-Cloud Environments

17. Chapter 13:Security in Large-Scale Environments

18. Other Books You May Enjoy

Conducting threat detection and response

In the previous section, we spoke about a way to log activity in our cloud environment (what was done, when, and by whom).

In this section, we will review managed services that allow us to review our logs and pinpoint actual threats and our response to the threats.

Using Amazon Detective for threat detection

Amazon Detective connects to services such as AWS CloudTrail and Amazon VPC Flow Logs to detect login events, API calls, and network traffic.

It then uses machine learning to detect activities outside normal behavior to assist you in finding the root cause of suspicious activities in your AWS environment.

Amazon Detective is the cloud-native equivalent of third-party tools such as Splunk, which allows you to query a large number of logs and detect security-related incidents.

Best practices for using Amazon Detective for threat detection

Here is a list of best practices to follow:

Allow access to the Amazon Detective...

The rest of the chapter is locked

You're reading from Cloud Security Handbook Find out how to effectively secure cloud environments using AWS, Azure, and GCP

Table of Contents (19) Chapters

Conducting threat detection and response

Using Amazon Detective for threat detection

Best practices for using Amazon Detective for threat detection

Authors (1)

Personalised recommendations for you

You're reading from Cloud Security Handbook Find out how to effectively secure cloud environments using AWS, Azure, and GCP

Table of Contents (19) Chapters

Conducting threat detection and response

Using Amazon Detective for threat detection

Best practices for using Amazon Detective for threat detection

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you