[ad_1]
Amazon Internet Companies unveiled the Amazon Safety Lake, a standards-based knowledge lake for safety knowledge, at this week’s AWS re:Invent 2022 convention. The brand new cybersecurity service will enable organizations to combination logs and occasion knowledge from a number of sources and analyze them to shortly detect and reply to threats.Safety knowledge is often scattered throughout a company’s setting, as functions, firewalls, and identification suppliers keep their very own logs and occasion knowledge. They’re additionally usually in disparate knowledge codecs, making it tough for safety groups to combination them. Creating processes to normalize knowledge throughout a number of sources may be pricey and time-consuming to construct, and managing the info lifecycle is advanced.Many organizations are turning to safety knowledge lakes to handle safety knowledge from a number of knowledge sources and to combine with different safety instruments. These knowledge lakes assist centralize and retailer limitless quantities of knowledge to energy investigations, analytics, menace detection, and compliance initiatives. It additionally makes it potential to mix the group’s personal knowledge with enriched knowledge from different sources for deeper context.With Amazon Safety Lake, organizations will be capable to retailer, analyze, and perceive the info collected from each cloud and on-premises infrastructure, the corporate stated. As a result of Amazon Safety Lake helps the Open Cybersecurity Schema Framework (OCSF), an open specification for safety telemetry knowledge, it will possibly ingest knowledge from various third-party suppliers. Having the info obtainable in OCSF format means safety groups can use the analytics software of their option to uncover malicious exercise.“After prospects select their knowledge sources, Amazon Safety Lake routinely aggregates and normalizes knowledge from AWS, combines it with third-party sources that help OCSF (an open normal), and optimizes it right into a format that’s straightforward to retailer and question,” AWS stated in an announcement. Amazon Safety Lake aggregates knowledge from AWS companies, akin to CloudTrail, Lambda, AWS Safety Hub, GuardDuty, and AWS Firewall Supervisor, in addition to from firewalls and endpoint safety merchandise from different corporations. A number of dozen corporations have introduced integrations with Amazon Safety Lake, together with Cisco, CrowdStrike, Palo Alto Networks, Barracuda, Lacework, Development Micro, and Laminar. Safety groups can analyze the info utilizing Amazon’s personal safety companies akin to Amazon Athena, Amazon OpenSearch, and Amazon SageMaker, in addition to third-party suppliers akin to IBM, Splunk, Sumo Logic, Securonix, and SentinelOne.The information lakes are constructed utilizing Amazon Easy Storage Service (S3) and AWS Lake Formation, the corporate stated.
[ad_2]