Posted On: Apr 7, 2023
We are excited to announce that AWS CloudTrail Lake is now available in the AWS GovCloud (US-East) and AWS GovCloud (US-West) Regions. These regions are in addition to the existing Regions where CloudTrail Lake is available.
AWS CloudTrail Lake is a managed data lake that lets organizations aggregate, immutably store, and query AWS activity (management and data events) recorded by CloudTrail for auditing, security investigation, and operational troubleshooting. CloudTrail Lake simplifies AWS activity log analysis by integrating collection, storage, optimization, and query in the same product. This removes the need for separate data processing pipelines that span across teams and products. CloudTrail Lake enables querying of CloudTrail data using the familiar SQL query language. It also includes sample queries that are designed to help you get started with queries for common scenarios, such as identifying records of all activities performed by a user to help accelerate security investigations. With immutable event data storage and a default retention period of seven years, CloudTrail Lake can help meet the compliance requirements of most users.
To get started, see Working with CloudTrail Lake in the CloudTrail User Guide.