“ I have checked the documents of AWS for deep dive into amazon security lake for a specific account across all regions. Amazon security lake makes it easy for logs and events data collection. In terms of cost, the solution is cheaper and secure.”
Amazon Security Lake is a fully managed security data lake service. You can use security lake to automatically centralize security data from AWS environments, SaaS providers, on premises, cloud sources and third-party sources into a purpose built data lake that’s stored in your AWS account. It is backed by Amazon Simple Storage Service buckets, meaning you retain ownership of the data you collect. Security Lake simplifies collecting security data and gathering insights from it. This supports a wide range of use cases with the ultimate goal of improving the protection of your workloads, applications and data.
In this post, you will experience the deep dive into amazon security lake for a specific account across all regions. Here I have an aws organization with a delegated administrator for security lake. And in the member account, I have enabled and set up the security lake for management account logs trace and also the billing of member account is managed by management account itself.
Architecture Overview
The architecture diagram shows the overall deployment architecture with data flow, security lake, s3 bucket, athena, cloudwatch logs, aws organization.
Solution Overview
The blog post consists of the following phases:
- Member Account Add-on in Management Account under AWS Organizations for Enable of Security Lake Service
- Enable and SetUp of Amazon Security Lake for Specific AWS Account for All Supported Regions in Member Account
- Run of Queries in Amazon Athena and Output of S3 Bucket with CloudWatch Logs
Phase 1: Member Account Add-on in Management Account under AWS Organizations for Enable of Security Lake Service
- Open the AWS Organizations console in the management account, click on add an aws account option and send the invitation to the member account. Goto member account and accept the invitation in aws organization service. Once the invitation is accepted, you can see the member account in aws organization of management account. Now in management account, enable the security lake under security lake aws service and provide member account number under delegate administrator.
Phase 2: Enable and SetUp of Amazon Security Lake for Specific AWS Account for All Supported Regions in Member Account
Phase 3: Run of Queries in Amazon Athena and Output of S3 Bucket with CloudWatch Logs
Clean-up
S3 bucket, cloudwatch logs, aws organization, security lake.
Pricing
I review the pricing and estimated cost of this example.
Cost of Amazon Security Lake = $0.00
Cost of Simple Storage Service = $0.01
Cost of CloudWatch Logs = $0.00
Total Cost = $0.01
Summary
In this post, I showed “deep dive into amazon security lake for a specific account across all regions”.
For more details on Amazon Security Lake, Checkout Get started Amazon Security Lake, open the Amazon Security Lake console. To learn more, read the Amazon Security Lake documentation.
Thanks for reading!
Connect with me: Linkedin
Top comments (0)