Benchmark: SEC04 How do you detect and investigate security events?
Description
Capture and analyze events from logs and metrics to gain visibility. Take action on security events and potential threats to help secure your workload.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-well-architectedStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select SEC04 How do you detect and investigate security events?.
Run this benchmark in your terminal:
powerpipe benchmark run aws_well_architected.benchmark.well_architected_framework_sec04Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_well_architected.benchmark.well_architected_framework_sec04 --shareBenchmarks
- BP01 Configure service and application logging
- BP02 Analyze logs, findings, and metrics centrally
- BP03 Automate response to events