Companies often struggle with how to respond to cybersecurity incidents. According to one recent poll, only three out of five organizations have an incident response plan in place, and only around a third do regular drills to ensure that their plans remain effective.
The consequences of poor incident response are costly. The International Monetary Fund estimates that cyberattacks will cost the world more than $23 trillion by 2027, up from roughly $8.4 trillion in 2022.
It’s against this backdrop that Amazon sensed an opportunity. Today, Amazon Web Services (AWS), the company’s cloud computing division, launched AWS Security Incident Response, a service that aims to reduce the time it takes for a business to recover from a cyberattack .
Hart Rossman, VP of global services security at AWS, told TechCrunch that the new service is designed to help security teams combat account takeovers, breaches, ransomware attacks, and other corporate intrusions along these lines.
“We’ve received feedback from customers that implementing effective security incident response programs is challenging due to a reliance on various tools, services, and people that are difficult to scale as organizations and business needs evolve,” he said. “AWS Security Incident Response can now be used as a […] single source of truth for security incident response.”
AWS Security Incident Response automatically triages findings from Amazon GuardDuty, Amazon’s threat detection service, and supported third-party cybersecurity tools. From a dashboard with integrated messaging and data transfer modules, customers can adjust the alert settings and account permissioning, and review active incidents, historical data, and metrics like the average time it takes to resolve an incident.
Source: Tech Crunch