At this week's re:invent conference, Amazon introduced a service that looks for and identifies potential security and compliance vulnerabilities.
The new Amazon Inspector tool (available now in preview) analyzes the behavior of applications that run in AWS and works on an application-by-application basis.
Developers start by defining a collection of AWS resources, then create and run assessments of that application. At launch, Inspector provides findings on common vulnerabilities and exposures, general network security, authentication, operation system and application security and a PCI DSS 3.0 assessment. Those running the Inspector agent can define the rules for the assessment and even set the duration (the default duration is 24 hours).
The Inspector service can be accessed from the AWS Management Console, AWS Command Line Interface or the API.
There are a few companies on the market today with similar offerings including CloudPassage and Dome9, but even so, Inspector comes at an important time in the maturation of the cloud, as systems, configurations and applications become increasingly complex and detecting security and compliance issues becomes more challenging.
Digital marketing executive with proven experience in all aspects of search engine optimization (SEO), performance-based advertising, consumer-generated/social media, email marketing, lead generation, Web design, usability, and analytics. - 20-year Internet marketing veteran, currently serving as the Digital Marketing Campaign Manager at Antenna Group (formerly Chicago Digital). - Former Editor-In-Chief of Website Magazine, and a regular speaker on Web technology digital marketing strategy - Author of several books on digital marketing Including Web 360: The Fundamentals of Web Success; Affiliate 360: The Fundamentals of Performance Marketing; Domains 360: The Fundamentals of Buying & Selling Domain Names, and SEO 360: The Fundamentals of Search Engine Optimization.