AWS announced theSecurity incident response services, thereby accelerating enterprises' discovery of network security attacks and reducing the time required to recover from attacks.
This service primarily protects against intrusion attacks such as account theft, data leakage, and ransomware. It automatically categorizes detection results from Amazon GuardDuty, Amazon's threat detection service, and compatible third-party network security tools, and aggregates information through the AWS Security Hub platform, enabling businesses to more quickly detect network attacks, confirm attack activity, review historical attack records, and leverage the 24/XNUMX support of the AWS Customer Incident Response Team to assist in resolving issues.
Enterprises can configure automated responses to attack scenarios and assign specific permissions to each action. This allows the automated response function to handle different attack scenarios while also automatically performing system repairs. If a repair fails, the service automatically creates a security report and notifies the appropriate administrator within the enterprise for follow-up action.
Currently, this service will be available in AWS's 12 cloud service regions around the world, including the East (Northern Virginia, Ohio), West (Oregon) regions of the United States, as well as Central Canada, Asia Pacific (Seoul, South Korea, Singapore, Sydney, Australia, Tokyo, Japan), and European regions such as Frankfurt, Germany, Ireland, London, UK, and Stockholm, Sweden.
Although there are many similar services on the market, AWS emphasizes that this service can be highly integrated with its cloud platform. For companies using AWS services, it will be able to simplify the security attack response deployment process, identify security attack behaviors more quickly, and reduce the time required to handle problems, allowing services to recover from attacks faster.
As numerous services in the market become increasingly integrated with network service platforms, the demand for proactive identification and prevention of cyberattacks is increasing year by year. Therefore, investing in this service is expected to create more development opportunities for AWS. AWS also stated that the PGA Tour, the US Professional Golf Tournament, has already pioneered this service, using it to prevent numerous cybersecurity attacks.
