AWS and Lacework Collaborate to Enhance Cloud Anomaly Detection

Highlights:

• Integrating Lacework with AWS Security Hub will improve current security alerts and add new composite warnings based on Amazon GuardDuty anomaly detection findings.
• Customers can send enriched Lacework composite alerts back into Amazon Security Lake via the integration to have even more access to security events.

Lacework Inc., a provider of cloud security services, recently disclosed an expansion of its collaboration with Amazon Web Services Inc. to offer customers enhanced anomaly detection via composite alerts linked with Amazon GuardDuty findings.

Amazon GuardDuty is a threat detection service provided by AWS that continuously scans an AWS environment for malicious or unauthorized activity. The service uses integrated threat intelligence, anomaly detection, and machine learning to identify and prioritize potential threats.

Integrating Lacework with AWS Security Hub will improve current security alerts and add new composite warnings based on Amazon GuardDuty anomaly detection findings. Combining Amazon GuardDuty findings and Lacework’s composite alerts will give security professionals a richer investigative context that aids in prioritization, shortening investigation times, and delivering higher cloud security for joint customers.

Customers can send enriched Lacework composite alerts back into Amazon Security Lake via the integration to have even more access to security events.

Brian Lanigan, Vice President of worldwide channels and alliances at Lacework, stated in a statement, “Through this extension of our relationship with AWS, we’re able to provide our shared customers with a comprehensive view of their cloud security attack surface and help them identify and respond to threats more quickly and effectively.”

Additionally, Lacework disclosed that it has collaborated with the cloud provider to complete an AWS-built-in, co-built solution that installs, configures, and integrates automatically with native AWS Cloud Foundational Services across various domains, including identity, security, and operations.

Using key AWS services like AWS CloudTrail, Amazon GuardDuty, AWS Security Hub, and AWS Organisations, Lacework, a member of the AWS Partner Network, has built its software solution. The incorporation seeks to ensure stable observability in cloud environments while reducing operational costs and risk.

According to Lacework, it can help customers achieve their scalability, simplicity, and cost-effectiveness goals by utilizing an AWS-validated Modular Code Repository created for enhancing partner solutions. Currently, all customers have access to the integrated platform.

In related news, AWS recently, at its annual re:Inforce conference in Anaheim, California, disclosed new GuardDuty expansions. With the addition of new features, GuardDuty can now scan EKS Runtime containers, Aurora databases, and threats based on Lambda.