Skip to main content

AWS Cloud Security

From beginners to experts, we've got digital training courses to fit every skill level. Explore AWS Skill Builder »

Detection and Response on AWS

Continuously detect, prioritize, and respond to security risks to help protect your workloads, at scale

What is Detection and Response on AWS?

AWS detection and response services help protect your cloud environment with integrated security capabilities in a unified security solution. These services help you continuously detect and prioritize critical issues by correlating and enriching security signals, such as threats and vulnerabilities, enabling you to surface and prioritize active security risks and streamline response at scale to protect your cloud environment.
Diagram illustrating AWS Security Hub's automated correlation, actionable insights, risk prioritization, and automated response features for security detection and response workflows.

Overview

Continuously detect and prioritize critical issues through automated correlation and enriching of security signals, such as threats and vulnerabilities, to help your organization operate more securely on AWS.

Gain broader security visibility across your cloud environment through centralized management in a unified security solution, aggregating security data from AWS services and partner products across your accounts and Regions.
Surface and prioritize active risks through actionable insights and automated workflows, enabling streamlined response at scale.
Normalize and combine security data from cloud and on-premises sources, gain a holistic view of your security, and leverage your preferred analytics tools to investigate and respond to events, all while retaining control and ownership of your data.

Use cases

Surface active risks through unified signals across multiple security services, centralized management, and standardizing controls to reduce operational complexity.

Learn more about AWS Security Hub »

Automatically discover and quickly route vulnerability findings in near real time to the appropriate teams, so they can take immediate action.

Learn more about Amazon Inspector »

Continuously detect and remediate cloud resource misconfigurations and compliance risks to ensure your environment is operating according to security best practices.

Learn more about AWS Security Hub »

Defend your accounts and workloads from potential threats, streamline threat response with automation, and minimize business impact through faster remediation and recovery time.

Learn more about Amazon GuardDuty »

Discover and protect sensitive data and workloads to increase visibility and automate remediation of your data security risks.

Learn more about Amazon Macie »

Expedia

"Expedia needs to stay up to date with global and local compliance requirements and the ability to process, analyze, and control the vast amounts of data we generate. The AWS solution we built around Amazon Macie has helped us automate data scanning, tagging, sampling, and identification and implement rule configuration, generation of metrics, and scaling security controls. With Macie at the solution's core, we can reduce the footprint on our sensitive data. By reducing PII data, we can open up data access to our analysts while reducing exposure and, at the same time, resulting in an empowering and enriching experience for our customers."

Aaron Miller, Principal Engineer, Expedia Group

Learn how Expedia uses Macie for data protection at petabyte scale »

Missing alt text value

Featured content

Top 5 use cases of AWS detection and response services

Explore this infographic for an overview of AWS detection and response services.

Learn more

Continuously identify and prioritize security risks

Read this ebook to learn how leading global organizations are benefiting from AWS detection and response services.

Learn more

Blogs

Loading
Loading
Loading
Loading
Loading