Posted On: Dec 20, 2021
Amazon Detective has added support for AWS Organizations to simplify account management for security operations and investigations across all existing and future accounts in an organization. With this launch, new and existing Detective customers can onboard and centrally manage the Detective graph database for up to 1,200 AWS accounts. This support is available today in all Detective supported AWS Regions. To learn more, see the Amazon Detective Administration Guide.
To get started, the organization management account can designate any member account as the Detective administrator. Detective recognizes when you’ve designated an account to administer other AWS security services such as Amazon GuardDuty or AWS Security Hub, and recommends that you choose that account as the administrator account for Detective. The administrator account enables organization accounts as member accounts in Detective. The administrator account can then centrally conduct security investigations across the organization. Existing Detective customers can also transition to this feature without disrupting their security operations. See the Detective Administration Guide for instructions.
AWS Organizations helps you to centrally manage and govern your environment as you grow and scale your AWS resources.
Using AWS Organizations, you can programmatically create new accounts and allocate resources, simplify billing by setting up a single payment method for all of your accounts, create groups of accounts to organize your workflows, and apply policies to these groups for governance. Amazon Detective makes it easy to analyze, investigate, and quickly identify the root cause of potential security issues. It automatically collects log data from your AWS resources and uses machine learning, statistical analysis, and graph theory to build a linked set of data that enables you to easily conduct faster and more efficient security investigations.