AWS Certified Security Specialty All-in-One Exam Guide (Exam SCS-C01)

CHAPTER 3 Cloud Security Event Remediation and Planning

In this chapter, you will learn about

• Automating alerts and remediation actions for security incidents

• Cleaning up after security incidents

• Best practices to avoid future security incidents

In the last chapter, we discussed which AWS services are most used in incident response plans. We discussed some of the logging and monitoring services, as well as some services that help you investigate any incidents that may occur. After that, we dug into where to look for some common indicators of security incidents, covering logs and monitors, billing activity, partner tooling, AWS outreach e-mails, and even one-time contacts. Finally, we covered how you can use these services and tools ...

Get AWS Certified Security Specialty All-in-One Exam Guide (Exam SCS-C01) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

AWS Certified Security Specialty All-in-One Exam Guide (Exam SCS-C01) by Tracy Pierce, Aravind Kodandaramaiah, Rafael Koike, Alex Rosa

CHAPTER 3

Cloud Security Event Remediation and Planning

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly