Tuesday, April 19, 2016

AWS Adds Security Inspector Tool

Amazon Web Services released an automated security assessment service that helps customers improve the security and compliance of their applications running on Amazon Elastic Compute Cloud (Amazon EC2) by identifying potential security issues, vulnerabilities, or deviations from security standards.

Amazon Inspector deploys on-host agents so customers get insight from inside Amazon EC2 instances and other AWS resources that make up an application environment. Amazon Inspector is also fully integrated with AWS CloudTrail, providing central logging of all security testing activity, giving auditors full visibility into what tests were performed and when, streamlining the process of demonstrating compliance in the development and operations lifecycle. With the new Amazon Inspector tool, customers pay only for the assessments they run, with the first 250 assessments free for a customer’s first 90 days.

“Customers have asked us if we could help them do the same rigorous security assessments on their applications that we do for our AWS services,” said Stephen Schmidt, Chief Information Security Officer, AWS. “Amazon Inspector delivers key learnings from our world-class security team as a managed service, so customers benefit from our continuous implementation of best practices and threat intelligence. Companies of all sizes can now perform assessments of their applications in an automated way and proactively remediate vulnerabilities.”


See also