Certified Security - Specialty

Sign Up Free or Log In to participate!

Alternative Approach to Detecting Root User Activity

I stumbled upon an AWS Management Blog post from July 2017 that contains an alternative approach to detecting root user activity. It uses CloudWatch Events and a Lambda function. https://aws.amazon.com/blogs/mt/monitor-and-notify-on-aws-account-root-user-activity/

skinsmanau

This has the big advantage of being near-realtime instead of the 15 to 20 mins publishing delay to CloudWatch Logs.

Chatz

The real question is what will be in the exam?

0 Answers

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?