AWS Inspector is used to list down all the Vulnerability as per the center of Internet security.
What is AWS CloudWatch?
One word: Performance Monitoring
AWS CloudWatch is a monitoring service to monitor your AWS Resources and the application that you run on AWS. CloudWatch is used for Performance Monitoring. It can monitor EC2, Autoscaling Groups, Elastic load Balancer, Route53, EBS, Storage gateway etc. It can also monitor Host Level Metrics like CPU, Network, Disk etc.
CloudTrail vs CloudWatch
CloudTrails is like a CCTV and used for increasing the visibility for API Calls and CloudWatch Monitor Performance.
CloudWatch Alerting: Yes, you can create alerts in CloudWatch as well and trigger notifications for it.
Use AWS Config and Lambda to Ensure that S3 Bucket Remains Private
- AWS Config will trigger the Lambda Function to invoke SNS for any changes in the AWS.
Create a Lambda function to monitor the Bucket ACL and Bucket Policy Changes. If the bucket ACL found public - Lambda function can over write it to make it private.
if the Bucket Policy found public - it can trigger a SNS Notification to the Security Team.
-- Cross region replication for the bucket ensures that the S3 Bucket is available in another region as well.
-- Use "AWS Encryption CLI" to encrypt the data first before sending the data across the wire.