Amazon Web Services released the Amazon Inspector service for cloud security assessments. What are the benefits...
of such a tool and what is its scope?
Amazon Inspector is an information security tool that helps to detect poorly configured resources within an AWS environment. It is available in preview from AWS. Amazon Inspector is a rules-based application that examines the configuration of deployed resources within an AWS account. It includes a set of rules configured by AWS security experts that check for security vulnerabilities, such as a lack of multifactor authentication on accounts with elevated privileges or known vulnerable software versions.
Amazon Inspector can generate a report of prioritized vulnerabilities within your cloud environment. Also, with Amazon Inspector, you can define security best practices and configurations and ensure they are enforced. The service also monitors system components and identified dependencies between them. Agents can be installed on virtual machines to scan for vulnerabilities.
Amazon Inspector can also scan applications built in AWS and report on compliance with regulatory standards, such as PCI DSS and HIPAA. Functions within the service are available programmatically through an application program interface (API). If you are interested in using Amazon Inspector, you can submit a preview request online.
Dig Deeper on Cloud Compliance: Federal Regulations and Industry Regulations
Related Q&A from Dan Sullivan
Docker's recent upgrade introduced support for hardware signing and in the future, automated security analysis on Docker images. Expert Dan Sullivan ... Continue Reading
Cisco's new project Contiv automates operational policies for containerized applications in the cloud. Expert Dan Sullivan explains the benefits of ... Continue Reading
Dropbox API abused by attackers posing as legitimate users in a huge spear phishing campaign. Expert Dan Sullivan explains how to mitigate the risks ... Continue Reading