Skip to main content
HashnodeSeun's Blog

Command Palette

Search for a command to run...

Top Security, Identity, and Compliance announcement at AWS re:invent 2024, Las Vegas.

Updated
2 min read
S
Seun Musa

I’m Seun, a Cloud Security Engineer. I share DevSecOps tips, cloud security insights, and career advice. I am passionate about mentoring, teaching, and making tech more inclusive.

AWS re:Invent 2024 took place in Las Vegas from December 2 to 6, attracting over 54,000 attendees who participated in more than 2,300 sessions and hands-on labs. The conference served as a hub of innovation and learning, hosted by AWS for the global cloud computing community.

In this blog post, I will be covering some of the major security, identity, and compliance announcements from the conference. Though this year’s event focused on best practices for zero trust, generative AI-driven security, identity, and access management, DevSecOps, network and infrastructure security, data protection, and threat detection and incident response. Apologies in advance if this post didn’t cover all of the announcement

Key announcements

Amazon GuardDuty Extended Threat Detection

Amazon GuardDuty Extended Threat Detection uses AI and machine learning to identify sophisticated attacks targeting AWS accounts, workloads, and data. This new capability automatically correlates security signals to detect attack sequences and provides detailed findings for faster response.

Amazon OpenSearch Service zero-ETL integration with Amazon Security Lake

This integration enables efficient exploration of voluminous data sources, streamlining security investigations and providing comprehensive security landscape visibility. It offers flexible data ingestion, pre-built queries and dashboards, and performance-enhancing features, accelerating investigations and optimizing analytics efficiency and costs.

Simplify governance with declarative policies

Declarative policies help enforce desired configurations for AWS services across organizations, ensuring compliance and reducing complexity. They can be applied at the organization, OU, or account level and prevent non-compliant actions, even those invoked by service-linked roles.

Resource control policies

RCPs, or Resource Control Policies, are a new organizational policy framework that allows for the centralized creation and enforcement of preventive controls on AWS resources. They enable organizations to set and manage maximum permissions for AWS resources, ensuring consistent governance and security as workloads scale.

AWS Security Incident Response

AWS Security Incident Response is a powerful new service designed to empower organizations in effectively addressing security issues within their environments. This cutting-edge service seamlessly integrates automated monitoring and investigation with enhanced communication and coordination. With direct, 24/7 access to the AWS Customer Incident Response Team, organizations can confidently prepare for, respond to, and recover from security events with speed and efficiency.

Comments

Join the discussion

No comments yet. Be the first to comment.

More from this blog

Seun's Blog

14 posts

I’m Seun, a Cloud Security Engineer. I share DevSecOps tips, cloud security insights, and career advice. I am passionate about mentoring, teaching, and making tech more inclusive.