AWS Security Monitoring & Compliance Management | AlienVault

AWS Security Monitoring and Compliance Management

AlienVault USM Anywhere delivers security and compliance management for the cloud in the cloud.

Career Builder
IPG Mediabrands
Dole Foods
Pappas Restaurants
U.S. Air Force
Indiana State University
Save Mart Supermarkets
High Plains Bank
Epsilon Systems Solutions
Pepco Holdings Inc
Lifespan Bioscience
Arcos Dorados Holdings
Bluegrass Cellular
Bank of Ireland
Hays Medical Center
National Film Board of Canada
Richland Washington School District
Delta Sonic
Shake Shack
Miami Parking Authority
Brookfield Zoo
Southwest Bank
Hawaiian Telcom
City of Fargo
Rainforest Alliance
Crawford Insurance
Pittsburgh Technical College
Crosskey Bank
Horizon Health Services
BAE Systems
Food Services
Cambridge University

Explore the Total Economic Impact™ of AlienVault USM

Commissioned Study Conducted by

Get the Full Study ›

Simple and Scalable AWS Security & Compliance

Most enterprises - whether large or small - are quickly reaping the benefits of the cloud. Cloud service providers, like Amazon Web Services (AWS), offer flexibility and scalability to businesses in every industry.

Unfortunately, IT security pros lose visibility and control over the data flowing in and out of the cloud, as well as when and how new workloads and instances are spun up. Yet, they’re still responsible for AWS security and compliance.

The AWS shared responsibility model establishes that infrastructure security is Amazon’s responsibility and everything else is up to the customer. Specifically, the customer is responsible for protecting data within applications, monitoring how users are accessing this data, detecting threats, and implementing AWS incident response.

Unfortunately, traditional, network-centric security capabilities (e.g. intrusion detection) fall apart when migrated to the cloud, and some like vulnerability assessment - are prohibited by Amazon unless an AWS Vulnerability / Penetration Testing Request Form is filled out and approved.

AlienVault® USM Anywhere™ overcomes these security and compliance challenges and more. In fact, we’ve optimized our AWS sensor to address the biggest cloud security issues in the simplest way.

Designed for AWS environments, AlienVault USM Anywhere delivers essential security capabilities in a way that makes sense in the cloud. It allows you to identify threats in real-time, scan for vulnerabilities, and respond to incidents to reduce risks and demonstrate compliance, no matter where your data, apps, or users roam.

Monitor, Detect, and Investigate AWS Security Issues

  • Immediately discover new AWS assets or misconfigurations
  • Detect and alert on abnormal behavior within AWS (e.g. instances being spun up or down at odd times)
  • Run continuous vulnerability assessments

Accelerate and Demonstrate AWS Security Compliance

  • Deploy in minutes to gain immediate visibility - before your next audit
  • Run detailed reports on AWS security and compliance for PCI DSS, ISO 27001, NERC CIP, and more

Integrate Your AWS and On-Premises Security Policy

  • Eliminate blind spots by unifying security monitoring for all assets, wherever they reside
  • Respond to incidents quickly - everywhere - with integrated threat intelligence from the AlienVault Labs Security Research Team
  • PCI DSS Level 1 Service Provider
  • ISO 27001:2013 Certified Compliant *
  • SOC 2 Type 2 Certified Compliant
  • Attestation of HIPAA Compliance
  • AWS Security Competency Achieved
  • Microsoft Azure Certified
  • Third-Party Verified as GDPR Ready

* The ISMS that governs USM Anywhere, USM Central

We’re Trusted & Verified.

AlienVault makes compliance a top priority for your organization and for ours. We have adopted the NIST Cybersecurity Framework (CSF), aligning our security controls and processes with industry-proven security best practices.

We use our own USM platform to demonstrate and maintain compliance, working with third-party auditors to regularly test our systems, controls, and processes. AlienVault is certified compliant for several regulatory and cybersecurity standards, including PCI DSS and HIPAA, among others.

see How We Secure your data

CRN Cloud PPG 2018
CRN Security 100 2018
SC Media 3.75 -Star
SC Magazine Awards 2018 Europe Winner
Forbes Cloud 100 2017
Deloitte Fast 500
Cybersecurity Excellence Awards Winner 2018
Recognized as a “Leader” in Summer 2018
Ranked #1 for Threat Intelligence Platforms

Monitor, Detect, and Investigate AWS Security Issues

According to Gartner Research, "Through 2020, 80% of cloud breaches will be due to customer misconfiguration, mismanaged credentials or insider theft, not cloud provider vulnerabilities." It's not the nature of the cloud that introduces security risks, but rather the lack of control that it brings. Anyone in your organization (with a credit card) can deploy new applications, exposing your company and its data to risk - and you may never even know about it. And yet, you’re still responsible for protecting this data.

To do that, you need to know things like:

  • Which users are accessing AWS workloads?
  • Where are they signing in from?
  • Are hackers scanning my infrastructure?
  • Has anyone compromised my credentials?
  • Did anyone mess with my security groups?
  • Are my servers communicating with known command and control servers?
  • Do any of my machines have known vulnerabilities?

USM Anywhere gives you the essential visibility and control you need for AWS security and compliance. Unlike traditional security approaches that try to retrofit their network-centric approach to an AWS universe, USM Anywhere is optimized for AWS with support for:

  • CloudTrail monitoring & alerting
  • S3 access log monitoring & alerting
  • ELB access log monitoring & alerting
  • AWS API asset discovery
  • AWS-native cloud intrusion detection
  • AWS vulnerability assessment
  • AWS infrastructure assessment

1 Gartner Research Paper, Best Practices for Securing Workloads in Amazon Web Services, April 2015

Accelerate and Demonstrate AWS Security Compliance

Compliance mandates like PCI DSS and NERC CIP require that you have implemented the essential security controls to protect sensitive data in your environment. Auditors will want to see proof that you know:

  • Which assets contain sensitive data
  • Who can access this data (and that they are authorized)
  • How assets are configured and whether there are any known vulnerabilities present
  • What threats exist and how to respond to them

Answering these questions for AWS assets requires that you have the capability to discover new assets, validate Security Group configurations, monitor VPC flow logs, run vulnerability scans and reports, and respond to emerging threats. And bring all that data together in a meaningful way so that you can pass that next audit, as well as maintain a secure posture in this dynamic environment.

USM Anywhere delivers the tools you need in one place so you can achieve a confident security posture and compliance, saving you time and money in achieving a confident security posture while benefiting from the speed and agility of AWS. You can deploy USM Anywhere within minutes, and have detailed compliance reports to provide to your auditor as needed.

Integrate On-Premises and AWS Security Policy

Nearly all companies have hybrid environments, where some data and apps have migrated to AWS, and others remain on-premises. In this context, it’s essential to have a complete picture into the security posture of this data, as well as the servers and apps that it flows through. But if you’re managing two separate security monitoring infrastructures - one for on-premises systems and another for AWS - you’re working twice as hard and still missing the big picture.

USM Anywhere overcomes this challenge by unifying security monitoring across environments - whether you’re using AWS, Azure, or have on-premises infrastructure to monitor as well. Plus, as a cloud-based security management solution, you can scale your threat detection and response capabilities as your hybrid environment changes, and pay for only what you need, when you need it. With this level of scalability, you can accelerate AWS incident response as well as reduce cost and complexity.

Secure Your AWS Environment

USM Anywhere provides complete cloud security management for your AWS environments. It includes all of the essential capabilities for monitoring cloud security and quickly identifying malicious or suspicious activity in your AWS cloud infrastructure.

Watch a Demo ›