s6 l18 inspector vs trusted advisor - amazon web services… · aws inspector vs aws trusted...
TRANSCRIPT
AWS Inspector vs AWS Trusted Advisor
What is AWS InspectorAWS INSPECTOR VS AWS TRUSTED ADVISOR
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for vulnerabilities or deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity. These findings can be reviewed directly or as part of detailed assessment reports which are available via the Amazon Inspector console or API.
Amazon InspectorAWS INSPECTOR VS AWS TRUSTED ADVISOR
How does it work?• Create “Assessment target”• Install agents on EC2 instances• Create “Assessment template”• Perform “Assessment run”• Review “Findings” against “Rules”
What is AWS Trusted AdvisorAWS INSPECTOR VS AWS TRUSTED ADVISOR
An online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment.Advisor will advise you on Cost Optimization, Performance, Security, Fault Tolerance
• Core Checks And Recommendations• Full Trusted Advisor - Business and Enterprise Companies Only
EXAM TIPSAWS INSPECTOR VS AWS TRUSTED ADVISOR
How does it work?• Create “Assessment target”• Install agents on EC2 instances• Create “Assessment template”• Perform “Assessment run”• Review “Findings” against “Rules”
EXAM TIPSAWS INSPECTOR VS AWS TRUSTED ADVISOR
Rules Packages:• Common Vulnerabilities and Exposures• CIS Operating System Security Configuration
Benchmarks• Security Best Practices• Runtime Behavior Analysis
https://docs.aws.amazon.com/inspector/latest/userguide/inspector_rule-packages.html
EXAM TIPSAWS INSPECTOR VS AWS TRUSTED ADVISOR
Severity Levels for Rules in Amazon Inspector• High• Medium• Low• Informational
https://docs.aws.amazon.com/inspector/latest/userguide/inspector_rule-packages.html
EXAM TIPSAWS INSPECTOR VS AWS TRUSTED ADVISOR
It will:• Monitor the network, file system, and process
activity within the specified target• Compare what it ‘sees’ to security rules• Report on security issues observed within target
during run• Report findings and advise remediation
EXAM TIPSAWS INSPECTOR VS AWS TRUSTED ADVISOR
It will not:• Relive you of your responsibility under the
shared responsibility model• Perform miracles
EXAM TIPSAWS INSPECTOR VS AWS TRUSTED ADVISOR
Trusted Advisor• Cost Optimization• Availability• Performance
AS WELL AS Security.