Businesses frequently find it difficult to respond to cybersecurity events. Only three out of five firms have an incident response plan in place, and only around a third regularly practice their plans to make sure they continue to work, according to a recent survey.
Poor incident response has expensive repercussions. According to the International Monetary Fund, the global cost of cyberattacks is expected to increase from over $8.4 trillion in 2022 to over $23 trillion by 2027.
Amazon recognized an opportunity in this context. The corporation’s cloud computing subsidiary, Amazon Web Services (AWS), today introduced AWS Security Incident Response, a tool designed to shorten the time it takes for a company to recover from a cyberattack.
According to Hart Rossman, AWS’s VP of global services security, the new tool is intended to assist security teams in thwarting ransomware attacks, account takeovers, breaches, and other similar corporate incursions, as reported by Media.
“We’ve received feedback from customers that implementing effective security incident response programs is challenging due to a reliance on various tools, services, and people that are difficult to scale as organizations and business needs evolve,” he said. “AWS Security Incident Response can now be used as a […] single source of truth for security incident response.”
Findings from Amazon GuardDuty, Amazon’s threat detection service, and compatible third-party cybersecurity solutions are automatically categorized by AWS Security Incident Response. Customers can monitor active events, historical data, analytics like the average time to resolve an incident, and modify alert settings and account permissioning from a dashboard that includes integrated messaging and data transfer modules.
AWS’ blog post on the service has more:
Customers can enable the proactive incident response feature, which creates service-level permissions allowing Security Incident Response to monitor and investigate findings … These findings are automatically sorted and remediated using a combination of automated services and customer-specific data, including common IP addresses … For any findings that cannot be remediated, Security Incident Response will create a security case which will notify the appropriate stakeholders within the customer’s organization.
AWS Security Incident Response and the products offered by numerous incident response startups are similar in this regard. FireHydrant, Rootly, and the more unusual Incident.io—which runs almost exclusively on Slack—are a few examples.
What makes AWS’ tool unique, then? According to Rossman, it includes assistance from AWS’s committed customer issue response team, to start. (However, customers have the option to work with outside partners and providers or manage issues on their own.) Additionally, for businesses that currently depend on other AWS security solutions, AWS Security Incident Response might be the most practical choice.
“AWS Security Incident Response works with all AWS detection and response services,” Rossman said, “by continuously identifying and prioritizing security issues.”
Today, AWS Security Incident Response is widely accessible through service-specific APIs and the AWS administration panel. The PGA Tour is among the clients who have already implemented it, according to Amazon.
It may be quite profitable for the internet giant if Amazon makes a move with AWS Security Incident Response. The global incident response market is expected to reach $89.09 billion by 2030, up from $21.61 billion the previous year, according to market analytics firm Verified Market Research.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter
About us:
The Mainstream formerly known as CIO News is the premier platform dedicated to delivering the latest news, updates, and insights from the CIO industry. As a trusted source in the technology and IT sector, we provide a comprehensive resource for executives and professionals seeking to stay informed and ahead of the curve. With a focus on cutting-edge developments and trends, The Mainstream formerly known as CIO News serves as your go-to destination for staying abreast of the rapidly evolving landscape of technology and IT. Founded in June 2020, The Mainstream formerly known as CIO News has rapidly evolved with ambitious growth plans to expand globally, targeting markets in the Middle East & Africa, ASEAN, USA, and the UK
