Configuration, compliance, and auditing
Audit and remediate your resource configurations
“We need an infrastructure-wide inventory of our AWS resources to answer questions like ‘which resources do we have deployed?’, ‘where are they deployed?’, ‘how are they configured?’, ‘which changes were made?’, ‘when did the change occur?’, and ‘who made the change?’”
Mike Grima, Cloud Infrastructure Security, Netflix
Gain visibility into your API activity
As your AWS footprint grows and becomes more complex, you need to audit your resources to see who created which resources and when. Use AWS CloudTrail to continuously log, monitor, and retain API activity related to actions across your company’s AWS infrastructure.
Configure your resources easily at scale
As you configure your organization’s resources at scale, you need to do so according to your organization’s policies. With AWS Config, you obtain a resource inventory and a configuration history. With this visibility, you can understand how certain resources depend on one another, and ensure your resources on AWS, on premises, or on other clouds are configured properly.
Audit and remediate your configurations
Once you establish proper configurations, you want to be able to easily audit and manage them. If errors are detected, you need an efficient way to make the appropriate changes. Use AWS Config and AWS CloudTrail to create rules that reflect your organization’s policies and use machine learning driven anomaly detection to detect errors and to remediate changes against those rules.
AWS Management and Governance services
In the past, organizations have had to choose between innovating faster and maintaining control over cost, compliance, and security. With AWS Management and Governance services, you don’t have to choose between innovation and control—you can have both. With AWS, you can enable, provision, and operate your environment for both business agility and governance control.
Discover other use cases for managing and governing in AWS
Improve the health of infrastructure and applications
Build, provision, and share resources
Manage your cloud operations
Establish a centrally managed, secure, multi-account AWS environment