|
Today I am pleased to announce the director of AWS Shield Network Security Director (Preview), an ability that simplifies the identification of configuration related to threats such as SQL injections and distributed events of Denial of Service (DDOS) and axles. This feature has identified and analyzes network resources, connection and configuration. It compares them to the proven AWS procedures and creates a network topology that emphasizes sources requiring protection.
Today, the organization faces significant challenges in holding a robust network security. Security teams often try to effectively discover all resources in their Svenhols, understand how these sources are interconnected, and find that security services are currently configured. In addition, they find out how well resources are configured compared to proven AWS procedures that require expertise and efforts. Many teams are difficult to find out which network security services and sets of rules would best protect their applications from normal and emerging threats.
AWS Shield Network Security Director of Addresses through three key capacities. It first performs a comprehensive analysis to discover sources across your AWS accounts, identify the connection between resources and determine which services and configurations of network security are currently introduced. Secondly, he prioritized resources according to the level of severity based on proven AWS security procedures and the intelligence of threats. Finlly, provides specific remediation recommendations, such as step-by-SEP instructions to implement the right AWS security services, include AW, Amazon Virtual Private Cloud (AMAZON VPC) and AMAZON VPC network control lists (ACLS).
Cases for critical network security support the service, including against Internet threats and control of human access to sources based on port or IP. It provides an analysis of the network to discover numbers and provides an analysis that eliminates the time -consuming manual process for identifying resources that require protection. The service offers resource prioritization by ensuring security security security based on network context and adherence to proven AWS practices, which will help you focus on what matters most. It also provides special recommendations with specific instructions that services and configurations will address each gap in security. You can also obtain answers in natural language from AWS Shield security director from Amazon Q Developer in AWS Management Console and Chat Applications.
We start with AWS Shield Security Director
To use the AWS Shield safety director, I have to start a network analysis of my AWS resources. I’m going to the AWS WAF & Shield and choose We are starting under AWS Shield Network Security Director In the navigation pane. I choose StartWhich moves me to the configuration page. On this page I can choose how to do my first network analysis: I can assess the findings from all supported regions or only from my current region. I will select Start a network analysis.
When the analysis is completed, the dashboard page shows the level of resource types according to the gravity level and the most common category of network security findings associated with their resources. Sources are categorized according to type and severity level (critical, high, medium, low, information), which facilitates identification that requires areas of attention.
I will further explore Resources Section for understanding the division of my assets and filter according to the level of severity in my environment. Can i use Overview of resources check a specific level of severity that will redirect me to Resources under Network Security Director With an associated severity level filter. I choose sources that have Medium The level of severity.
I choose a specific source to display its topological network map, which shows how it connects to other sources and related findings. This visualization helps me understand the potential impact of security configurations and identify exposed paths. I will check detailed findings, such as “allow unlimited incoming access (0.0.0.0/0) on all ports” with a seriousness evaluation.
I also go to Findings under Network Security DirectorWhich shows a normal Z configuration. For each finding I get detailed information and recommended remediation steps. The service evaluates the severity of the findings (high, medium, low) to help me prefer its reaction. Critical severity, such as “Cloudfront origin, is also accessible to the Internet in cloudfront” or highly serious findings, such as “allowing unlimited incoming access (0.0.0.0/0) on all ports” followed first, followed by medium and low See
You can analyze your network security configuration in natural language, with AWS Shield security director within Amazon Q Developer in AWS Management Console and Chat Applications. For example, can you say, “Do I have any network security from my cloudfront distribution?” “Now is any of my sources vulnerable to robots and scrapers?” This integration helps security teams to quickly understand their body safety posture and take instructions to strengthen proven procedures without having to go through extensive documentation.
To explore this ability, I will ask “What is my most important network safety?” in Explore with Amazon Q section. Amazon Q analyzes network security configuration and generates an answer based on the assessment of my AWS environment.
With this understanding view of network security, you can now strengthen your data driver’s decision against emerging threats.
Join the preview
The AWS Shield Security Director is available in US East (N. Virginia) and Europe (Stockholm). Amazon Q Developer’s ability to analyze network security configurations is available in previewing US East (N. Virginia). If you want to strengthen network security, visit the AWS Shield Network Security Director Console and Inity your first network security analysis.
For more information, see AWS Shield.
– Esra
