Banker at a computer software company with 201-500 employees
MSP
Top 5
2024-03-25T19:14:19Z
Mar 25, 2024
I highly recommend enabling CloudTrail because it keeps an eye on your environment when you're not looking. There's no case where I would say customers should not enable it because it's not something that you're paying for upfront. If it does activate, you might have to pay for things like Lambda functions, but it's worth it. This is especially important now with so many potential security risks. AWS locks logs for 90 days, but now you have them available indefinitely. However, keep in mind that storing these logs can incur costs. I rate the overall product a nine out of ten.
My advice depends on whether you're a BFSA customer or a healthcare customer. Specific parameters need to be enabled based on your industry. With that configuration, you'll be able to trigger notifications and pull out data. Overall, I would rate the solution an eight out of ten because when you consider all business sectors like healthcare, shipping, retail, manufacturing, and research & development, each generates different types of files and events.
I'd advise to integrate it with your security solution and correlate logs across AWS. That's the single point to start understanding if your account is compromised. And always keep a backup of the logs. And make sure those logs are kept in a separate AWS account from the main one. First thing any attacker would do is delete those logs to cover their tracks. Forensics becomes very tough without them. Overall, I would rate the solution a ten out of ten.
Information Security Officer at Habib InsuranceSecurity Officer Habib Insurance
Real User
Top 20
2024-01-12T09:54:00Z
Jan 12, 2024
The solution’s maintenance depends on the situation. Sometimes there are critical issues like device issues, application issues, Internet issues, infrastructure issues, or HSA issues. It depends on the team, infrastructure size, and the scope of the cloud. If it is a set of three or four servers, there is no need for a team, the Microsoft support team handles it. The product is good. Overall, I rate the solution an eight out of ten.
The solution is a good, all-in-one product for logs, security, and compliance that are important in the cloud. Its logs automatically capture publishing, services, events, and anything you create in AWS. I rate the solution a nine out of ten.
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource...
I highly recommend enabling CloudTrail because it keeps an eye on your environment when you're not looking. There's no case where I would say customers should not enable it because it's not something that you're paying for upfront. If it does activate, you might have to pay for things like Lambda functions, but it's worth it. This is especially important now with so many potential security risks. AWS locks logs for 90 days, but now you have them available indefinitely. However, keep in mind that storing these logs can incur costs. I rate the overall product a nine out of ten.
My advice depends on whether you're a BFSA customer or a healthcare customer. Specific parameters need to be enabled based on your industry. With that configuration, you'll be able to trigger notifications and pull out data. Overall, I would rate the solution an eight out of ten because when you consider all business sectors like healthcare, shipping, retail, manufacturing, and research & development, each generates different types of files and events.
I'd advise to integrate it with your security solution and correlate logs across AWS. That's the single point to start understanding if your account is compromised. And always keep a backup of the logs. And make sure those logs are kept in a separate AWS account from the main one. First thing any attacker would do is delete those logs to cover their tracks. Forensics becomes very tough without them. Overall, I would rate the solution a ten out of ten.
The solution’s maintenance depends on the situation. Sometimes there are critical issues like device issues, application issues, Internet issues, infrastructure issues, or HSA issues. It depends on the team, infrastructure size, and the scope of the cloud. If it is a set of three or four servers, there is no need for a team, the Microsoft support team handles it. The product is good. Overall, I rate the solution an eight out of ten.
I rate AWS CloudTrail an eight out of ten. I recommend the solution if you are auditing compliance and security for data usage.
The solution is a good, all-in-one product for logs, security, and compliance that are important in the cloud. Its logs automatically capture publishing, services, events, and anything you create in AWS. I rate the solution a nine out of ten.