AI Services Opt-Out Policies This type of policy lets you decide whether you allow AI services to collect data when they’re being used across your organization. Some AI services provided by AWS, such as Amazon Lex, Amazon Polly, Amazon Rekognition, and more (for a complete list, please consult the AWS documentation) may store and collect […]
Artificial Intelligence and Machine Learning Since CloudTrail and CloudWatch collect logging and metric data from Route 53 operations, this can be stored and analyzed with AI/ML tools offered by AWS and its business partners. Companies such as Splunk and others offer services in this space. Check the AWS Marketplace for the latest information. Redshift Redshift […]
Summary In this chapter, you learned about some of the most prevalent attacks that security engineers face. This knowledge of common attacks puts the need for security services into perspective. It also gives you an understanding of the various services you will need as you go through the rest of this book with a crucial […]
Getting hands-on with AWS Glue ETL components In this section, you will use the Data Catalog components created earlier to build a job. You will start by creating a job: This is optional. Then, click on the Run job button: Figure 3.6 – A screenshot of the AWS Glue ETL job Figure 3.7 – A […]
Predictive Scaling Another AutoScaling feature is predictive scaling, which uses machine learning to learn the scaling pattern of your application based on the minimum amount of historical data. The machine learning component then predicts the scaling after reviewing CW data from the previous 14 days to account for daily and weekly spikes as it learns […]
Management Policies The other type of policy handled by AWS Organizations is management policies, which later subdivides into artificial intelligence (AI) services opt-out policies, backup policies, and tag policies. Management policies are inherited from the root of your organization down to the account level. The effective policy being applied at the account level is the […]
DNS Logging and Monitoring Amazon Web Services has integrated Route 53 into its management applications for ease of use and insight into its operations. Since all interactions with Route 53 are an API call behind the scenes, these records can be natively sent to CloudTrail for a record of activities and analysis. The CloudWatch monitoring […]
AWS Autoscaling After you design all the instance layers to be scalable, you should take advantage of the AWS Autoscaling service to automate the scale-in and scale-out operations for your application layers based on performance metrics—for example, EC2 CPU usage, network capacities, and other metrics captured in the CloudWatch service. The AutoScaling service can scale […]
Features of AWS Glue AWS Glue is a completely managed serverless ETL service on AWS. It has the following features: AWS Glue has the Data Catalog, and that’s the secret to its success. It helps with discovering data from data sources and understanding a bit about it: As you now have a brief idea of […]
Introducing AWS Organizations As was mentioned earlier, AWS Organizations is an account management service. Its role is to help large and complex organizations handle their AWS environment more efficiently. You can use AWS Organizations to manage security policies across accounts and filter out unwanted access, automate the creation of new accounts through its application programming […]