Posted On: Dec 19, 2022
Amazon FinSpace now provides customers with additional user activity monitoring options through logging of web application and data access events to AWS CloudTrail. Amazon FinSpace is a managed analytic data hub for capital markets customers that enables analysts and data engineers to access data from multiple sources and transform it using FinSpace’s managed Apache Spark Engine with Capital Markets Time Series Analytics Library. When a user takes an action in the FinSpace web application or uses data stored in their FinSpace Environment, an event is published to their FinSpace environment’s audit repository. It can then be viewed using the Audit Reports viewer hosted in the FinSpace web application. This provides FinSpace administrators a convenient way to quickly view user activity and data access.
Additionally, some customers want to capture these access events for storage and analysis in their organization’s Security Event and Incident Management (SEIM) tools, often for regulatory compliance reporting. These tools allow organizations to efficiently collect and analyze security event data in one place, giving them the ability to investigate past suspicious activity incidents or detect new ones. For AWS customers, a common way to ingest data into SEIM tools is through CloudTrail.
Starting today, customers can capture these web application and data access events from FinSpace in CloudTrail. FinSpace Web application events are logged automatically as CloudTrail management events. To receive FinSpace data access events, customer will need to configure their trail to include CloudTrail data events. By default, trails do not log data events. Additional charges apply for data events. For more information, see AWS CloudTrail Pricing. To learn more about CloudTrail data events from FinSpace see here. You can learn more about Amazon FinSpace here.