Registration
Register for all three workshops with the following link.
Topic Overview
AWS Security Hub provides a view of security alerts and security posture across AWS accounts. Security Hub aggregates organize, and prioritizes security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Identity and Access Management (IAM) Access Analyzer, AWS Systems Manager, and AWS Firewall Manager, as well as from AWS Partner Network (APN) solutions.
AWS Security Hub Automated Response and Remediation is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The add-on solution includes the playbook remediations for the security standards defined as part of the Center for Internet Security (CIS) AWS Foundations Benchmark v1.2.0.
Workshop Overview
In this three-part workshop, you will experience a self-guided demonstration of the deployment process and details of the technical components provided by AWS Security Hub Automated Response and Remediation. Additionally, experience the automated remediations in action.
Workshop Objectives
Self-guided demonstration of the deployment process with AWS CloudFormation
Understand the technical components
Detect ( AWS Security Hub, Amazon CloudWatch Events)
Ingest ( AWS Security Hub Custom Actions, Amazon CloudWatch Event Rules)
Remediate (Playbooks - AWS Systems Manager, AWS Lambda)
Log & Notify (Amazon CloudWatch Log, Amazon Simple Notification Service)
Experience the automated response and remediation via a series of actions that break the rules defined by the Center for Internet Security (CIS) AWS Foundations Benchmark v1.2.0
Prerequisite
We recommend that attendees have the following prerequisites:
Working knowledge of AWS core services
Familiarity with AWS Security Hub, Amazon CloudWatch, AWS Systems Manager, AWS Lambda, and AWS SNS Notification