Posted On: Nov 20, 2023

AWS Glue announces a new capability that allows users to configure the detection sensitivity and actions such as partial or full redaction, and encryption, at an entity level to improve security posture along with improved data interpretability. 

The sensitive data detection feature in AWS Glue identifies over 200 types of sensitive data, such as social security numbers, credit card numbers, names, and driver's license numbers from more than 50 countries. Once detected, users can take actions to mask or encrypt the sensitive information before saving records in their data repositories. Previously, users lacked the ability to control detection sensitivity, resulting in stricter detection. Additionally, they could only apply a common action to all identified entities. Now, users can configure detection sensitivity to suit specific use cases, enabling stricter detection for accurate entity classification or detecting all possible entities to prevent any leakage of sensitive data. Moreover, users can apply entity-level actions for improved data interpretability, such as redacting the entire social security number and displaying only the last four digits of the credit card.

This feature is available in the commercial Regions as AWS Glue. To learn more about Sensitive Data Detection in AWS Glue Studio, visit our documentation.