Security analytics in OpenSearch Service now supports OCSF and custom logs
News
This article discusses the new security analytics capabilities in Amazon OpenSearch Service, which now supports Open Cybersecurity Schema Framework (OCSF) formatted data and custom log types.
Specifically, the article covers:
- Native support for OCSF data ingested from Amazon Security Lake
- Security detection rules for OCSF data
- Ability to ingest and create custom detection rules for virtually any custom log type
- Correlation engine to analyze and highlight connections between potential security incidents
- Availability of these new capabilities in all AWS Regions where Amazon OpenSearch Service is available
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.