Sign in
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help


The Open Raven Data Risk assessment provides critical insights and recommendations for securing sensitive data and reducing compliance risk. Far too often, attackers simply have to discover sensitive data that has been mistakenly left exposed by human error. Using the Open Raven Data Security Platform, our team of experts will rapidly discover, classify, and assess sensitive data and provide a detailed report.

The Open Raven Data Risk Assessment consists of three steps:

  • A one-hour meeting to establish read-only access to your AWS account and to understand what types of sensitive data you need to protect. All data remains in your cloud. Open Raven uses only metadata. Connections are made using either CloudFormation templates (automatically or manually), or via Terraform.
  • A rapid discovery and inventory of assets followed by classification of sensitive data using PII, PCI/Financial, PHI, and Developer Secrets data classes. The use of custom classes may also be considered. Data scans are curated to focus on high risk areas including, but not limited to, publicly accessible or unencrypted S3 buckets.
  • A one-hour meeting to review the risk assessment report which includes a high-level map and asset inventory list, a summary of data discovered by type and class, detailed findings regarding critical data security issues, and more.

Upon completion of the assessment, a detailed report will be provided with the following information:

  • High-Level Map View and Asset Inventory List: An output of the discovery and mapping exercise which includes all assets, both native and non-native, security groups, VPC peering connections, and resources connected to external facing IP addresses.
  • Data Risk Assessment: Details of public facing and/or unencrypted S3 Buckets, VPC peering relationships, details of access by Security Group, S3 Bucket configurations, and AWS Backup configurations.
  • Data Classification & Sensitive Data Findings: A summary of discovered data by type and class.
  • Policy Violations: Detailed findings regarding critical data security issues, ransomware specific controls, AWS Security Best Practices, and verification that critical assets are part of an AWS Backup plan.
  • Insights & Trends: A summary of trends in AWS asset activity, insights into the types of storage data used in the environment which directly relates to cost, and security specific insights into resource types, regions, accounts (open/closed, encrypted/not encrypted).
Sold by Open Raven, Inc.
Fulfillment method Professional Services

Pricing Information

Dimension Cost
Data Risk Assessment Contact seller for rate


You can log a support ticket for any issues related to the assessment service by visiting, or by emailing the support team at