Security, Identity, and Compliance Flashcards
AWS Artifact
A service that enables customers to easily access, download, and manage AWS compliance reports, such as SOC, PCI, and ISO reports.
AWS Certificate Manager (ACM)
A service that makes it easy to provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services, including Elastic Load Balancing, Amazon CloudFront distributions, and APIs for Amazon API Gateway.
AWS CloudHSM
A service that enables customers to protect cryptographic keys and other sensitive data, such as passwords, by using a cloud-based hardware security module (HSM).
Amazon Cognito
A service that enables you to add authentication and authorization features to your applications. It allows you to create and manage user pools, which are collections of user identities, and to authenticate users using various identity providers, such as Facebook, Google, or Amazon.
Amazon Detective
A service that makes it easy to investigate, understand, and respond to security issues. It uses machine learning to automatically identify unusual behavior and provides an integrated experience for investigating potential security issues.
Amazon GuardDuty
“A service that uses machine learning to analyze and identify security threats, such as unauthorized access or data exfiltration. It continuously monitors network traffic and provides alerts when it detects malicious behavior.
AWS Identity and Access Management (IAM): A service that enables you”
AWS Identity and Access Management (IAM)
A service that enables you to securely control access to AWS services and resources for your users. It allows you to create and manage users and groups, and to define permissions that determine which actions a user can perform and on which resources.
Amazon Inspector
A service that analyzes the behavior of an application and security vulnerabilities in the application and the underlying infrastructure. It is used to improve the security and compliance of applications deployed on AWS.
AWS License Manager
A service that allows you to manage your software licenses centrally and automate the process of discovering and recording your software assets. It also enables you to enforce license usage rules and track compliance with your licensing agreements.
Amazon Macie
A service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. It alerts customers when sensitive data is at risk of unauthorized access or movement, and provides recommendations for how to remediate the risk.
AWS Shield
A service that provides protection against Distributed Denial of Service (DDoS) attacks. It includes both basic and advanced protection levels.
AWS WAF
A service that allows you to create web access control lists (ACLs) for your web applications and APIs, and to block or allow incoming web requests based on the rules you define. This service can help protect your applications from common web exploits, such as SQL injection and cross-site scripting (XSS) attacks.
