AWS Audit Manager and Artifact

Learn how to manage risk and compliance with regulations using AWS Audit Manager. Also, get an overview of AWS Artifact.

We'll cover the following

AWS Audit Manager
AWS Artifact

AWS Audit Manager

AWS Audit Manager is a service that allows us to audit our AWS resources and simplifies how we manage and assess risk in compliance with industry standards. It automates the process of collecting evidence, allowing us to ensure the policies, activities, and procedures we have created are working as expected.

It provides us with some prebuilt frameworks that include a set of testing procedures according to industry standards. We can then run assessments based on these frameworks, which collect data from our AWS resources and create audit-friendly reports.

Following are some of the main resources used in AWS Audit Manager.

Controls

In AWS Audit Manager, control refers to a set of measures and procedures defined to assess the environment of our AWS organization. It is created to protect our data and ensure a set of defined security requirements are met. By using a control, we have the surety that our resources are working as expected in accordance with the rules and regulations we have set up. There are two types of controls in Audit Manager:

Standard controls: These are prebuilt controls associated with specific standard frameworks.
Custom controls: These are customized controls built for our specific requirements.

Frameworks

In AWS Audit Manager, a framework is a file that determines which AWS resources will be tested in an environment to create audit reports. There are two types of frameworks supported in Audit Manager:

Standard framework: These are prebuilt frameworks provided by AWS based on AWS best practices and can not be deleted or modified.
Custom frameworks: We can create custom frameworks from scratch or build on an existing framework according to our requirements.

Assessments

In AWS Audit Manager, a framework is used to build an assessment, which is used to collect evidence and evaluate the effectiveness of the controls we use. Using an assessment, we can review the security and compliance posture of the resources inside our AWS account, identify the risk areas, and take appropriate actions against such resources.

An active assessment in AWS Audit Manager collects evidence from multiple sources over the scope defined in the assessment. The evidence includes the data captured from a resource and its metadata. AWS Audit Manager then collects and organizes this data into audit-ready reports.

AWS Artifact

AWS Artifact is a service that provides us with AWS security and compliance documents. These documents can be provided to auditors to monitor the security and compliance in our AWS infrastructure. We can access industry standards and regulations from a single point through this service.

Get hands-on with 1200+ tech skills courses.

Introduction

AWS Fundamentals

Understanding Cloud Computing Essentials— From Zero to Hero

Identity and Access Management

Securing AWS Resources: Managing Access with IAM

AWS IAM Permission Boundaries

Using AWS IAM Access Analyzer

Compute Services

Understanding AWS Compute Services — From Zero to Hero

Amazon EC2: Elastic Compute Cloud

Working with Instances: An Amazon EC2 Walkthrough

Managing Instance Volumes Using EBS

Networking

Understanding Networking Services in AWS—From Zero to Hero

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Accessing AWS Services over AWS PrivateLink Using VPC Endpoints

Monitoring IP Traffic Using VPC Flow Logs

Route 53

Serverless Computing

Getting to Know AWS Lambda

Building and Deploying Serverless Applications with AWS SAM

Developing RESTful Microservices with API Gateway and DynamoDB

Building a WebSocket-Based Chat Application Using API Gateway

Mastering AWS AppSync Lambda Resolvers

Application Integration

Getting Started with Amazon Simple Queue Service (SQS)

Handling Amazon SNS Notifications with AWS Lambda

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Decoupling Serverless Applications with Amazon EventBridge

Getting Started with AWS Step Functions

Containers

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

High Availability and Scalability

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Mastering Amazon EC2 Dynamic Scaling Policies

Storage

Understanding AWS Storage Options—From Zero to Hero

Simple Storage Service (S3)

Working with AWS S3 Cross-Region Replication

Resizing Images with S3 Batch Operations and AWS Lambda

Managing Data Access with Amazon S3 Access Points

File Storage and Transfer

Getting Started with Amazon FSx for Windows File Server

Databases

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Exploring Graphs with Amazon Neptune

Getting Started with Amazon Keyspaces

Achieving Ultra-Fast Performance Using Amazon MemoryDB for Redis

Improving Database Performance with Amazon ElastiCache for Redis

Migration and Transfer

Use of AWS Database Migration Service from Aurora MySQL to S3

Security and Compliance

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Protecting Web Applications Using AWS WAF

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Deployment Services

Mastering AWS Deployment Services—From Zero to Hero

CloudFormation

Getting to Know AWS CloudFormation

AWS CloudFormation Updates: Change Sets and Stack Policies

Mastering AWS CloudFormation Helper Scripts

Machine Learning

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

Getting started with Amazon Fraud Detector

Build an Educative Chatbot with Conversational AI Using AWS Lex

Content Delivery and Optimization

Analytics

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Getting Started with Amazon Redshift

Building ETL Pipelines on AWS

Create a Data Lake with Lake Formation and Analyze It with Athena