Lacework introduces the executive dashboard to highlight your organization's security posture and behavior patterns. This new dashboard prioritizes time sensitive security events and provides a comprehensive view of your AWS account security.
The Dashboard includes these changes:
- The Events Timeline moved to the new "Events" dossier.
- Analytical graphs from the old dashboard were removed. You can find them in a corresponding dossier.
- Compliance reports are available in the “Reports” dossier.
What's New in the Dashboard
The Security Posture graphic presents a summary of the data reduction provided by Lacework. Incoming data includes AWS accounts, CloudTrail logs, process information, network connections, file hashes, command line activity, and more.
Lacework integrates with AWS CloudTrail to automatically detect abnormal behavior in AWS Accounts, including unusual use of your AWS resources, regions, accounts and services. This graph shows all the medium and higher CloudTrail events.
Lacework discovers and monitors activities of all workload entities: applications, processes, VMs, containers, machines, and more. After establishing a behavioral baseline of your environment, Lacework automatically detects anomalies: malicious activities (a call to a bad IP, escalation of privileges, file tampering) and unusual or suspicious behaviors (new applications unexpectedly accessing storage resources) to name a few. This graph shows all the medium and higher level events across workloads.