Ends in
00
days
00
hrs
00
mins
00
secs
SHOP NOW

$2 OFF ALL AWS, Azure, Google Cloud & Kubernetes Practice Exams!

Find answers, ask questions, and connect with our
community around the world.

Home Forums AWS AWS Certified Security – Specialty Difference Between Security Hub, Detective, and Inspector Reply To: Difference Between Security Hub, Detective, and Inspector

  • TutorialsDojo-Support

    Member
    June 22, 2020 at 9:55 pm

    Hello farris-kerai,

    AWS Trusted Advisor provides you real-time guidance to help you provision your resources following AWS best practices. AWS Trusted Advisor does not solve any problem by itself, it just presents you with information that you may want to take action. For example, AWS Trusted Advisor will show you a list of underutilized EC2 instances, so you want to take action to lower those instance sizes. Another is on the Security section, for example, you have a security group with Open inbound port 22. This will be shown by Trusted Advisor to you, but it is up to you to take action for those items.

    It merely shows recommendations based on AWS best practices.

    AWS Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations. For example, you can set rules that all EC2 instances should have a required Tag “Environment”. If one of your team members created an instance and did not tag it properly, AWS Config can flag that instance. You can also have AWS Config automatically trigger a notification and a Lambda function to remediate or correct the Tag. Basically, AWS Config allows you to set configuration rules for your AWS resources.

    https://aws.amazon.com/config/

    https://aws.amazon.com/premiumsupport/technology/trusted-advisor/

    Regards,

    Kenneth Samonte @ Tutorials Dojo