Sophos CSPM Adds Automated AWS Security Incident Detection
Sophos has announced Cloud Optix cloud security posture management (CSPM) users now can automate security incident detection and response across their Amazon Web Services (AWS) infrastructure, according to a prepared statement. The company unveiled the Cloud Optix upgrade at the AWS re:Invent 2021 conference in Las Vegas, Nevada.
Cloud Optix users can analyze AWS CloudTrail events to build a picture of individual user activity, Sophos indicated. They can view a timeline of user activities, high-risk anomalies and security and compliance incidents across all AWS accounts, along with remediation guidance for security teams.
Meanwhile, Cloud Optix users can secure AWS and other cloud workloads against cyber threats and cloud environment misconfigurations, Sophos noted. In addition to AWS CloudTrail, Cloud Optix users can use leverage the solution in conjunction with the following services:
- AWS Security Hub
- Amazon GuardDuty
- Amazon Macie
- AWS Systems Manager and Patch Manager
- AWS Firewall Manager
- AWS Identity and Access Management (IAM) Access Analyzer
- Amazon Detective
- Amazon Elastic File System
Also, Cloud Optix can be used with the Sophos Central console, the company stated. This ensures Cloud Optix users can access Sophos’ portfolio of cybersecurity solutions and services.
Sophos Delivers AWS Managed Security Services
Along with Cloud Optix, Sophos provides an AWS managed security services package that blends automated protection and managed threat response into a single offering, the company said. The package offers a variety of security capabilities, including:
- Endpoint, cloud workload and network security
- Inventory visibility
- Vulnerability scanning
- Compliance tracking
Furthermore, the package is backed by the Sophos Managed Threat Response security team, the company noted. This team monitors AWS environments and responds to threats.
Sophos is an AWS Level 1 Managed Security Service Provider (MSSP) Competency program partner. It supported more than 16,500 global and regional MSPs worldwide as of September 2021.