Closed JJediny closed 3 years ago
In accordance with GSA Security Engineering Requirements for AWS - PL-8: Information Security Architecture:
GuardDuty ($$) - is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts and workloads. With the cloud, the collection and aggregation of account and network activities is simplified.
Config ($) - is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.
That all sounds good! In addition, let's split out issues to:
Closing in favor of https://github.com/18F/tts-tech-portfolio/issues/1044
Background
These services provide automated monitoring of security settings/incidents/best practices
Implementation
Acceptance