Many companies face challenges in responding effectively to cybersecurity incidents. A recent survey revealed that only 60% of organizations have an incident response plan in place, and just about a third conduct regular drills to ensure these plans remain functional.
Failing to respond well to cyber incidents can be extremely costly. The International Monetary Fund predicts that the global financial toll of cyberattacks will climb to over $23 trillion by 2027, a sharp increase from approximately $8.4 trillion in 2022.
In light of this growing issue, Amazon identified a business opportunity. Its cloud computing arm, Amazon Web Services (AWS), has introduced a new service called AWS Security Incident Response. This offering is designed to help organizations recover more quickly from cyberattacks.
Hart Rossman, AWS’ VP of global services security, explained that the service is tailored to address security challenges such as account takeovers, data breaches, ransomware, and other forms of cyber intrusions.
“Customers have told us that building effective incident response programs is complex, as they rely on a mix of tools, services, and personnel that can be hard to scale as their needs evolve,” Rossman stated. “AWS Security Incident Response serves as a centralized hub for managing security incidents.”
The new service integrates findings from Amazon GuardDuty, AWS’ threat detection tool, along with compatible third-party cybersecurity solutions. Through a unified dashboard, users can adjust alerts, manage permissions, and access insights into both active and past incidents, including metrics like resolution times.
Although similar to offerings from startups like FireHydrant, Rootly, and Incident.io (the latter operating mainly within Slack), AWS’ tool has some distinguishing features. According to Rossman, it comes with support from AWS’ specialized incident response team. Companies can also opt to manage incidents independently or collaborate with third-party vendors. For organizations already using AWS security products, the service offers seamless integration.
“AWS Security Incident Response continuously identifies and prioritizes security issues across all AWS detection and response services,” Rossman noted.
The service is now available through the AWS management console and APIs, with customers like the PGA Tour already onboard.
If successful, AWS Security Incident Response could generate significant revenue for Amazon. Market research suggests that the global incident response industry, valued at $21.61 billion last year, could expand to $89.09 billion by 2030.
Post a Comment