Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for vulnerabilities or deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed report with prioritized steps for remediation.
To help you get started quickly, Amazon Inspector includes a knowledge base of hundreds of rules mapped to common security compliance standards (e.g. PCI DSS) and vulnerability definitions. Examples of built-in rules include checking for remote root login being enabled, or vulnerable software versions installed. These rules are regularly updated by AWS security researchers.
Amazon Inspector Preview Available
Sign Up for the Preview
Amazon Inspector helps you to identify security vulnerabilities as well as deviations from security best practices in applications, both before they are deployed, and while they are running in a production environment. This helps to improve to overall security posture of your applications deployed on AWS.
Amazon Inspector allows you to define standards and best practices for your applications, and validate that applications are adhering to these standards. This enables you to more easily enforce your organization’s security standards, and manage security issues proactively before they impact your production application.
Amazon Inspector reduces the risk of introducing security issues during the development lifecycle by automating the security assessment of your applications and proactively identifying security vulnerabilities. This allows you to develop and iterate on new applications quickly and assess compliance with best practices and policies.
The AWS security organization is constantly assessing the AWS environment and updating a database of security best practices and rules. Amazon Inspector, takes this AWS security expertise and make it available to customers in the form of managed services that makes it easier for customers to establish and enforce best practices within their AWS environments. This adds to the expertise of your in-house security team, allowing them to provide more value to your organization.
Amazon Inspector gives security teams and auditors visibility into security testing that is performed when developing applications on AWS. This streamlines the process of validating and demonstrating that best practices are being followed in the development environment.
