It is a developer’s dream to have a tool or an application which is highly scalable, flexible, and cost-effective to publish messages from an application and immediately deliver them to subscribers or other applications of their choice, in a highly dynamic and critical environment, where it is paramount to maintain a robust security posture. Your security team would seek a resource which can help them streamline their notifications, consolidating them and sending them to a communication channel of their choice. You’d even want to do automation based on critical findings, so your dashboard looks the way you want, showing your alerts that need your immediate attention.
Here’s some good news for you. Warden is now equipped with the ability to be integrated with AWS Simple Notification Service (SNS) that allows you to have the workflow that you want, with the tools that you already have!
Our latest feature release is designed to make web-scale computing easier for developers. Amazon SNS follows the “publish-subscribe” (pub-sub) messaging paradigm, with notifications being delivered to your applications of choice using a “push” mechanism that eliminates the need to periodically check or “poll” for new information and updates. Amazon SNS gives developers an easy mechanism to incorporate a powerful notification system with their applications, and AWS SNS is mostly available with your existing AWS accounts, you can refer here for more details.
What is AWS SNS?
Amazon Simple Notification Service (Amazon SNS) is a fully managed messaging service for both application-to-application (A2A) and application-to-person (A2P) communication.
The A2A pub/sub functionality provides topics for high-throughput, push-based, many-to-many messaging between distributed systems, microservices, and event-driven serverless applications. Using Amazon SNS topics, your publisher systems can fan out messages to a large number of subscriber systems, including Amazon SQS queues, AWS Lambda functions, HTTPS endpoints, and Amazon Kinesis Data Firehose, for parallel processing. The A2P functionality enables you to send messages to your users at scale via SMS, mobile push, and email.
What are the features being released?
- Warden CSPM’s Integration to AWS SNS
- Allowing CSPM new findings to be sent to AWS SNS Topic
- Allowing further integration to any third party tools of your choice!
- Notifications consolidation to MS Teams, or Discord, etc.
- The ability to create a Jira ticket automatically if there’s a new critical findings raised by Warden
How to set it up?
You can easily set it up within minutes without any development effort. To see a step-by-step approach, you can have a look at this.
Warden → AWS SNS → Zapier → MS Teams, Discord integration example
Why is this feature needed?
- Readily available in your AWS account
- Easy configurability: Any third-party tools of your choice (your current tools, and even your future tools if you decide to switch) can be easily setup to get notifications once you connect Warden CSPM with AWS SNS. This gives you the ability to get notifications and alerts on a single, consolidated platform of your choice.
- Flexibility: You can make data-driven decisions with ease, as this functionality empowers you to visualize your data better, showing what truly matters on your dashboard. This allows you to transform the data into the format that you want.
What value does it add for our customers?
- A single pane-of-glass view: You can now consolidate notifications and don't have to log in multiple consoles to see what alerts are being flagged.
- Easy installation: AWS SNS and Warden CSPM integration makes it easy for you to set up notifications with the channel of communication of your choice. It could be an existing application or any future apps your team might add in your security workflows. It empowers you to work freely at build speed and doesn’t tie you down to MS teams or any third-party tools.
Pro tip: You can also add logic and mark priority with color codes to the flagged notifications, to better understand the criticality associated with each of them. Just set it up and get them delivered on your preferred channel of communication!
In today’s complex threat landscape, an attack is no longer a single malicious action or something that a single threat detector can help flag and protect your infrastructure. The attackers are using more advanced techniques and processes to get into your environment and it can only be flagged by looking at contextual information, using advanced capabilities that an All-in-One cloud security tool like Warden provides. If you are curious to see Warden in action in a 15 min demo, drop us a line here.