AWS Security Hub Creates Mega MSSP Starting with 25 Partners
… delivering it.
Amazon’s hub gathers data shared from AWS accounts and third-party partner tools, ingests and transforms alerts and threat information, correlates and prioritizes its findings. AWS said the hub provides automated, continuous account-level configuration and compliance checks based on whichever best practices a customer or partner chooses — including its own Center for Internet Security (CIS) AWS Foundations Benchmark.
Compliance scores are presented via Amazon CloudWatch, the company’s monitoring and management service for developers, system operators and customers’ administrators. The CloudWatch UI lets administrators see specific accounts and resources that they must address.
“When you have hundreds of accounts and thousands of alerts every day, customers are looking for a visual summary that integrates the different dashboards,” said Jeff Aden, founder and executive VP of business development at 2nd Watch, an AWS premier consulting partner.
Alert Logic, an MSSP that operates its own security operations center (SOC) and provides threat-assessment services as an alterative to using SIEM tools, has worked with AWS Security Hub in advance of last month’s launch. Amazon said the AWS Security Hub is open to additional partners.
Along with AWS Security Hub, Amazon also launched its AWS Control Tower, for customers and service providers to create multi-account AWS environment using its new Landing Zone and blueprints that cover the company’s baseline and best practices for automating the creation of accounts that are secure.
“This is a much easier way, with just a few clicks and a GUI, for you to be able to manage your multi-account secure environment or landing zone in AWS, Jassy said.