AWS Cloud Operations Blog
Author: Jegan Sundarapandian
Jegan Sundarapandian is a Sr. Technical Account Manager with AWS based out of Denver, CO. He works with AWS Customers to implement AWS best practices and keep them operationally healthy and secure.
Gain Compliance Insights in your AWS Environment Using Amazon Q Business
Enterprise organizations managing multiple AWS accounts face complexity as their cloud infrastructure scales. The exponential growth in resources, coupled with diverse configuration requirements across different business units, creates significant challenges in maintaining effective oversight of AWS environments. AWS Config is a service that continually assesses, audits, and evaluates the configurations and relationships of your resources […]
How to automate application log ingestion from Amazon EKS on Fargate into AWS CloudTrail Lake
Customers often look for options to capture and centralized storage of application logs from Amazon Elastic Kubernetes Service on Fargate (Amazon EKS on Fargate) Pods to investigate root causes or analyze security incidents. Customers also like the capability to easily query the logs to assist with security investigations. In this blog post, we show you […]
Centralized Dashboard for AWS Config and AWS Security Hub
Back in July 2022, we announced AWS config compliance scores for conformance packs which helps you quantify your compliance posture as an Amazon CloudWatch metric. It’s a quantitative measure of compliance status. While customers can have hundreds of AWS accounts where AWS Config is enabled and each account and each AWS Region have a different compliance score. While […]
Automate the ingesting of event logs from managed nodes into AWS CloudTrail Lake with AWS Systems Manager
AWS CloudTrail Lake is a managed data lake for capturing, storing, accessing, and analyzing user and API activity on AWS for audit, security, and operational purposes. You can aggregate and immutably store your activity events, and run SQL-based queries for search and analysis. On Jan 2023, we released a new feature that expands the capabilities […]
How to Deploy AWS Config Conformance Packs Using Terraform
This post demonstrates how to enable AWS Config and deploy a sample AWS Config Conformance pack using HashiCorp’s Terraform. AWS Config provides configuration, compliance, and auditing features required for governing your resources and providing security posture assessment at scale. This service lets you create managed rules, which are predefined, customizable rules that AWS Config uses […]
Implementing a cross-account and cross-Region AWS Config status dashboard
AWS Config helps central IT administrators monitor the compliance of multiple AWS accounts and multiple regions in large enterprises. AWS Config utilizes a configuration recorder to detect changes in your resource configurations and capture these as configuration items. A separate configuration recorder exists for every region in each AWS account. However, AWS Config recorders can […]