Register for Holidaze, win $20,000+ in prizes!

banner

Incident Response: AWS Security in Q4 2023 – Part 5

We hope the previous blogs around AWS security series offered valuable insights into the latest releases of AWS Security features/services. Continuing the series, Part-5 on features around Incident Response in AWS that were released in the last quarter. 

To bring a sophisticated approach to your security standards in the increased threat vectors, AWS has introduced a wide range of protocols to handle incident response management. This aspect focuses on how and when data is recovered even if it’s breached against attackers. Look at the overview of AWS incident response recover protocols to understand more about it. 

Introducing Incident Response Recover into Existing Instance for AWS Elastic Disaster Recovery

 
AWS Elastic Disaster Recovery (AWS DRS) announces the general availability of Recover Into Existing Instance to help companies to be ready for incident response. The instance allows you to recover into an original or pre-defined existing instance instead of spinning up a new Amazon EC2 instance.

AWS DRS minimizes downtime and data loss with fast, reliable
recovery of on-premises and cloud-based applications using affordable storage,
minimal compute, and point-in-time recovery. Previously, AWS DRS allowed you to
perform a recovery, drill, or failback for your source servers into a target
Region.

Further, the account of launching a new instance, or on-premises
functioning, lead to failback to a specific machine. With Recover to Existing
Instance, you can now retain the existing metadata and security parameters
associated with the instance. Recover Into Existing Instance is available in
all AWS Regions where AWS DRS is available. As part of incident response, this
recovery helps the companies to track and backup data that’s subjected to
risks.

Amazon Data Lifecycle Manager adds support for pre-script and post-script automation of EBS Snapshots

 
Amazon Data Lifecycle Manager automates pre-scripts and

post-scripts on their Amazon EC2 instances. These instances help them to
protect their workloads with application-consistent Amazon Elastic Block Store
(EBS) Snapshots. This capability works in conjunction with AWS Systems Manager
Agent and AWS Systems Manager Documents (SSM documents).

Moreover, it comes with AWS-provided templates. It is for making
it easy for customers to automate the creation of application consistent EBS
Snapshots, including for self-managed databases.

Amazon Data Lifecycle Manager provides an automated,
policy-based lifecycle management solution for EBS Snapshots and EBS-backed
Amazon Machine Images (AMIs). With pre-script and post-script support,
customers enable ease-to-automate and creation of application consistent EBS
Snapshots. AWS-provided SSM templates for workloads including MySQL,
PostgreSQL, and Windows applications help to get it done. Also, this is an
advancement through which incident response gets optimized for organizations to
enhance their security.

Extended Support with Lifecycle Manager

 
Customers can also create policies to automate other actions

including Fast Snapshot Restore (FSR), Cross-Region copy, and Cross-account
sharing. As a result, it will optimize incident response platforms at scale and
makes security a standard protocol.

Amazon Data Lifecycle Manager support for pre-script and
post-script automation is available in all AWS Regions where Amazon Data
Lifecycle Manager is available. There is no cost associated with creating and
managing Data Lifecycle Manager policies and managing incident response as well.

Customers only pay for the storage cost associated with any created
EBS Snapshots. This feature is now available through AWS Management Console,
AWS CloudFormation, AWS SDKs, AWS Tools for Powershell, or the AWS Command Line
Interface (CLI).

Incident Response: AWS Backup launches support for restore testing

 

AWS Backup announces the general availability of restore
testing, a new capability within AWS Backup. Most importantly, AWS backup helps
perform automated and periodic restore tests of supported AWS resources. AWS
Backup is a fully managed service that centralizes and automates data
protection across AWS services and hybrid workloads.

With this launch, AWS Backup customers can test recovery
readiness to prepare for possible data loss events. In addition, AWS Backup measures
duration times for restore jobs to satisfy compliance or regulatory
requirements.

Get started with restore testing using the AWS Backup
console, API, or CLI. Configure a restore testing plan and you’re all set to
go. You can integrate it with your test suites using Amazon EventBridge
(CloudWatch Events), validating the restored services and sending back
completion status.

After the restore testing plan completes its run, you can
use the results to show compliance for organizational or governance
requirements.

Introducing AWS Resilience Competency Partners: Handle Incident Response at ease

 

AWS Resilience Competency highlights AWS Partners who have
demonstrated technical expertise and proven customer success. AWS partners are
helping customers improve the availability and resilience of their critical
workloads in the cloud. These Resilience Competency Partners provide
professional consulting and engineering services where AWS experts validate
these services across three categories: Resilience Design, Resilience
Operations, and Resilience Recovery.

Partners with validated solutions using AWS-as-a-service in
all three categories receive the Core Resilience designation. Subsequently,
partners are distinguished as providing the most comprehensive resilience
services. AWS Resilience Competency Partners provide essential technical
capabilities to help customers architect, develop, test, monitor, operate, and
protect workloads in the cloud. In addition, it helps them to achieve the
utmost system uptime and availability needs of incident response management. 

How do competency centers work?

Complex systems are susceptible to a variety of failures –

both small and large – throughout their lifespan. These include code deployment
issues, infrastructure problems, data and state failures, and natural
disasters. As a result, organizations must expect and plan for system failures,
and design their systems to withstand and recover from failures with minimal
impact to end users.

Remote teams, distributed systems, and frequent releases,
combined with the customer expectations that applications are always on and
always available. These further highlight the need for increased resilience in
today’s business environment.

AWS Resilience Competency Partners have distinguished
themselves in providing these solutions to a wide variety of customers. They
have also demonstrated the ability to perform these solutions repeatedly, at
scale.

Request a Cyber Insurance Quote from an AWS Cyber Insurance Competency Partner

 

The new AWS Cyber Insurance Competency makes it easy for customers to find affordable insurance policies from AWS Partners. Certainly, these integrate their security posture assessment through a new, simplified customer experience with AWS Security Hub. AWS customers can receive cyber insurance pricing estimate and purchase plans from AWS Cyber Insurance Competency Partners. Further they can feel confident they have the coverage for security and recovery services when needed most.

AWS Cyber Insurance Partners worked with AWS to digitally
transform their assessment and onboarding processes. They can now reward
customers that present a security posture that follows AWS best practices
similar to “safe-driver” discounts. Customers leverage an AWS Security Hub
assessment scanning against the AWS Foundational Best Practices Framework.
Thereby, deliver the assessment results to insurance providers.

The customer is then presented with a price for coverage and
feedback on steps they can take to proactively lower their rate by further
improving their security posture. With AWS support, democratizing the
procurement of cyber insurance rewards customers for making good security
decisions.

AWS Resilience Hub expands support for customer compliance with ISO and SOC

 

AWS Resilience Hub has added certification for International
Organization for Standardization (ISO) and System and Organization Controls
(SOC). Amazon Web Services (AWS) maintains certifications through extensive
audits of its controls. Here it is to ensure that information security risks
that affect the confidentiality, integrity, and availability of company and
customer information are appropriately managed.

AWS Resilience Hub provides customers with a single place to
define, test, and track the resilience of their business and mission-critical
applications. Also, it helps avoid unnecessary software, infrastructure downtimes
or operational disruptions. Using AWS Resilience Hub, customers can define
their applications’ resilience targets, Recovery Time Objective (RTO) and
Recovery Point Objective (RPO). In addition, helping to validate that these
targets can be met prior to deployment.

Try out the demo

We will instantly email you the invitation.
The demo is 100% free – no strings attached.