AWS Security Hub takes half-hearted bite out of SIEM vendors' lunches

[InfoSec News <alerts () infosecnews org>]

https://www.theregister.co.uk/2019/06/25/aws_security_hub_launch/

By Gareth Corfield
The Register
25 Jun 2019

Amazon Web Services has wheeled out its Security Hub – a SIEM aggregator 
product – in an effort to snaffle some of the lucrative cloud SIEM market 
for itself.

The product, unveiled as generally available to world+dog this morning, is 
billed as allowing AWS customers to "quickly see their entire AWS security 
and compliance state in one place, and so help to identify specific 
accounts and resources that require attention."

For potential customers, the idea is simple: instead of being bombarded by 
alerts about security snafus, config calamities and compliance cockups, 
Security Hub is intended to “bring all of this information together in one 
place”. You get a set of graphs, dashboards and the like: in essence it’s 
a SIEM aggregator, with remediation tips thrown in too.

Most worrying to competing security companies with similar products of 
their own will be the pricing model. Customers will pay "only for the 
compliance checks performed and security findings ingested", with the 
first 10,000 security findings per month thrown in free. After those first 
10k the pricing is $0.0010 per check for the first 100,000 compliance 
checks per account per month, dropping down to $0.0008 per check for the 
next 400k, and to $0.0005 per check for everything over and above that.

[...]

--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_