AWS Cloud Operations & Migrations Blog

Tag: AWS Config

Automate AWS Config reporting for noncompliant resources that have been non-compliant for a period of time

AWS Config evaluates the configuration settings of your AWS resources. You do this by creating AWS Config rules, which represent your ideal configuration settings. AWS Config provides customizable, predefined rules called AWS Managed Rules to help you get started. While AWS Config continuously tracks the configuration changes that occur among your resources, it checks whether […]

Moving from a single account AWS Config deployment to an Organization wide deployment

As customers become more mature in the cloud, they will start to investigate how they can utilize additional AWS services in order to meet their goals. In many cases the initial phase will involve some research and testing of the service before deploying it across their cloud environment. For customers that may need to maintain […]

Deploying Custom AWS Config Rules in an AWS Organization Environment

In this post, we will show how you can deploy AWS Config custom rules across accounts in your organization, leveraging the Rules Development Kit (RDK), an open source development kit designed to support intuitive and efficient “Compliance-as-Code” workflows. With AWS Config custom rules, you can define custom logic for the desired configuration state of your […]

Enhance Evidence Collection with AWS Config and Audit Manager

AWS Audit Manager is a fully-managed service that provides prebuilt frameworks for common industry standards and regulations, and that automates the continual collection of evidence to help you prepare for an audit. The continuous and automated gathering of evidence related to your AWS resource usage helps simplify risk assessment and compliance with regulations and industry […]

Announcing AWS CloudTrail Lake integration with AWS Config

Organizations managing cloud infrastructure in AWS need effective mechanisms to audit operations in their AWS accounts for security and compliance. Early this year we announced the availability of AWS CloudTrail Lake a managed data lake that lets organizations aggregate, immutably store, and query events recorded by CloudTrail for auditing, security investigation, and operational troubleshooting. CloudTrail […]

Announcing evidence finder for AWS Audit Manager

Today, we’re excited to announce a new search feature that allows customers to perform targeted searches by multiple criteria, group the results and send the data to an assessment report. Customers can more easily find the evidence they need and, organize it without the need to add it to a report. Customers can then generate their […]

AWS Cloud Operations Kiosks at AWS re:Invent 2022

The Expo on Day 3 of AWS on Wednesday, December 1, 2021 at the Venetian Resort in Las Vegas, Nevada. For most organizations, the question isn’t “if we move to the cloud” anymore; it’s “what do we move first?” and “how soon can we be operating in the cloud?” Wherever you are in your digital […]

Build Cloud Operations Skills Using the New Getting Started with AWS Config Training

Are you responsible for your company’s compliance? Do you want to make sure that your AWS resources are aligned to your company’s desired configurations? And make sure how to automate the remediations of noncompliant resources? Do you see an opportunity for your organization to automate its continuous compliance at scale? If you need to understand […]

Cost Optimization recommendations for AWS Config

In this post, we’ll walk you through the various best practices and recommendations for optimizing AWS Config costs. This also provides technical guidance for looking at the rules and the recorder, how to start deleting or removing rules that aren’t needed, and then editing the Settings of Config, specifically the “Resource types to record”, to […]

How to use AWS Config and CloudTrail to find who made changes to a resource

AWS Config is a service that continuously tracks and evaluates the configuration changes of your AWS resources. It provides you with a Resource Timeline which helps you to investigate and audit how the resources and their relationships change over time. AWS Config records the configuration of supported resources in a JSON structure known as a […]