Security News > 2020 > April > Amazon Detective: Analyze and visualize security data to get to the root cause of security issues
Amazon Detective is a new security service that makes it easy for customers to conduct investigations into security issues across their AWS workloads.
Amazon Detective automatically collects log data from a customer's resources and uses machine learning, statistical analysis, and graph theory to build interactive visualizations that help customers analyze, investigate, and quickly identify the root cause of potential security issues or suspicious activities.
Amazon Detective's visualizations provide the details, context, and guidance to help analysts quickly determine the nature and extent of issues identified by AWS security services like AWS Security Hub.
"Even when customers tell us their security teams have the tools and information to confidently detect and remediate issues, they often say they need help when it comes to understanding what caused the issues in the first place," said Dan Plastina, Vice President for Security Services at AWS. "Gathering the information necessary to conduct effective security investigations has traditionally been a burdensome process, which can put crucial in-depth analysis out of reach for smaller organizations and strain resources for larger teams. Amazon Detective takes all of that extra work off of the customer's plate, allowing them to focus on finding the root cause of an issue and ensuring it doesn't happen again."
"Amazon Detective offers our customers an additional layer of insight about what's happening in their environment, which gives our security analysts more data and context to use during investigations without adding complexity to that process. With Amazon Detective, we'll be able to process specific types of alerts faster, which means reducing investigation time and getting quicker, more detailed answers to our customers about what happened."
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/QAkqa3mUi_g/