AWS Security Monitoring

Connect AWS to LogSentinel SIEM

Amazon Web Services (AWS) is a leading IaaS provider used by thousands of companies for their IT infrastructure. There are multiple sources of security-relevant events that should be integrated and correlated in order to gain full visibility on the threat landscape.

With LogSentinel SIEM you have a unified dashboard for real-time control and insight across all aspects of AWS. Demonstrate compliance at reduced operational cost and minimize effort on audit, forensics and fraud detection.

Full AWS
log coverage

CloudTrail, CloudWatch, GuardDuty, Amazon Virtual Private Cloud (VPC), Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), authentication events.

Threat
Detection

LogSentinel discovers anomalous behavior, as well as insider and cyber threats, based on flexible rules, machine-learning and threat intelligence

Straightforward Integration

API-based integration allows you to collect events from multiple AWS sources by simply configuring AWS credentials with the proper permissions

Data Insights and visualizations

Gain insights by analyzing correlated data from AWS and other cloud and on-premise sources with flexible custom queries and charts

AWS Security Monitoring Use Cases

Office365 Phishing Protection

Unauthorized access

Monitor authentication events and get alerted for anomalies

AWS Configuration-anomalies

Configuration anomalies

Correlate CloudTrail events and look for irregular patterns

AWS Anomalous-API-calls

Anomalous API calls

React to malicious API calls that can threaten the entire infrastructure

Suspicious-IAM-activity

Suspicious IAM activity

Tackle account management and privilege escalation risks

Office365 Suspicious-VPC-traffic

Suspicious VPC traffic

Investigate suspicious traffic to and within your Virtual Private Cloud

Insights

CONTACT US

If you would like to clear compliance and boost the information security of your business, using a next- gen SIEM, that combines log management, behavior analytics (UEBA), threat detection and incident response into a complete security monitoring platform, get in touch now!