Solution Description

Amazon

Macie

Fully managed data security and privacy service

Uses machine learning to identify sensitive data in Amazon S3

(Recommendation) When migrating data to AWS use S3 for staging and Run Macie

Amazon

GuardDuty

Continuously monitor AWS environment for suspicious activity (Intelligent Threat Detection)

Analyze AWS CloudTrail events, VPC Flow Logs etc

Amazon

Detective

Analyze, and quickly identify the root cause of potential security issues. Collects log data from

your AWS resources and uses machine learning enabling you to perform more efficient security

investigations.

Certificate

Manager

Provision, manage, deploy, and renew SSL/TLS certificates on the AWS platform

Penetration

Testing

Testing application security by simulating an attack