While Amazon Web Services will most definitely secure its own infrastructure, when it comes to anything riding on top of the infrastructure, enterprise IT organizations are on their own.
To enable IT organizations to secure cloud applications running on AWS, ObserveIT today unfurled ObserveIT CloudThreat for AWS, a free, lightweight agent deployed on an Amazon Linux AMI instance that integrates with the AWS CloudWatch monitoring service to collect user activity logs and provide visibility into administrative actions.
The goal, says Dimitri Vlachos, vice president of marketing for ObserveIT, is to make sure that administrative AWS privileges are not compromised, and also to provide access to other commercial user activity monitoring offerings that ObserveIT provides for AWS environments via its own application server platform.
Available on the AWS Marketplace, Vlachos says the free version is intended to introduce AWS customers to the value of user activity monitoring by helping those organizations protect their AWS cloud applications from insider threats.
The degree to which IT organizations are worried about rogue insiders accessing AWS environments will naturally vary by company. But most internal IT organizations today don’t have much visibility into AWS or any other public cloud, which may make dealing with potential insider threats a good place to start to find out what is happening in those public cloud platforms.