Monitoring plays a crucial role in automating security in the cloud environment. For monitoring in AWS, we use CloudWatch. Apart from this, we can also use open source tools, such as Nagios and Zabbix.
CloudWatch helps you define metrics and alerts for your workload running on AWS.
Apart from this, AWS has introduced Amazon Macie under security services, which gives you a very interactive dashboard for your AWS account. Amazon Macie uses machine learning methods to discover, classify, and protect your data:
In the preceding screenshot, you can see the alerts recorded by Macie. In the backend, it scans through CloudTrail to generate the alerts and dashboards. It reads all the trails in real time and uses machine learning methods to generate the alerts:
If you go to the SETTINGS
section of Macie, it will show you the multiple settings that Macie uses to protect your monitored data:
At the bottom, it has one option called Basic alert
, where you can define the alerts for Macie to inform...