Alert Logic Log Manager Support for AWS CloudTrail

New data source adds activity monitoring for AWS accounts to Log Manager This week at their annual re:Invent conference, Amazon Web Services (AWS) announced a new service—AWS CloudTrail—that collects log data for user and related activity in an AWS account. This new service provides AWS users access to useful information on who makes changes within an account, what those changes are and when and where those changes happen. Tracking activity data is a best practice for security purposes and also a requirement if you need to comply with PCI, HIPAA, GLBA, Sarbanes-Oxley and other regulations. Also, it’s not just a matter of collecting the data; to show compliance, auditors also need detailed documentation and reports. Finally, having this information available will allow you to make better decisions about your security architecture and the ongoing security of your applications and data. In AWS environments, the responsibility for this data is shared. AWS makes the data available, and it’s your responsibility to manage the data. We’ve been working with AWS through their beta program and have added support for AWS CloudTrail to Alert Logic Log Manager this week. CloudTrail’s ease of setup with Log Manager represents another key characteristic (in addition to being able to collect activity data). CloudTrail is simply another data source for Log Manager. Just as you would configure Log Manager to access logs for an application or device, you add the CloudTrail logs via the UI, and those logs are pulled into Log Manager like any other log files. Do this, and you’ll have access to activity information like:

  • Starting, stopping, terminating, rebooting instances
  • Creating or deleting security groups
  • Creating and deleting users
  • Updating user profiles
  • Adding and removing groups
  • Updating role and password policies
  • Signing certificate upload or deletion

Log Manager manages more than just CloudTrail data; it collects and normalizes log data from your entire infrastructure, supporting security best practices and compliance requirements. If you’d like to learn more about Log Manager and request a free trial, visit www.alertlogic.com/amazon-solutions.