Blog
ExtraHop Reveal(x) 360 + Amazon Security Lake
Centralize Data to Enhance Investigations and Reduce Storage Costs
Girard Ordway
May 30, 2023
Aggregating data from multiple tools spread across cloud and hybrid environments is a complex and challenging task for security and operations teams. These challenges often lead to gaps in visibility and monitoring while delaying threat detection, investigation, and response. With Amazon Security Lake, a new data lake in AWS for security logs, organizations can significantly reduce complexity and close security gaps.
By integrating ExtraHop Reveal(x) 360 with Amazon Security Lake, AWS customers can leverage context-rich network data to enhance the security of workloads and applications.
What Amazon Security Lake Means for the Enterprise
Amazon Security Lake helps organizations aggregate, manage, and derive value from log and event data generated from cloud and on-premises environments. With centralized data from a variety of sources at their fingertips, security and operations teams have greater visibility across their organizations and actionable insight from detections. Amazon Security Lake makes it easier to query data for a variety of use cases. Access to network and endpoint data in a single location is especially valuable for organizations using extended detection and response (XDR) for their cloud and hybrid security.
For ExtraHop users, Amazon Security Lake offers another method for leveraging high-fidelity network intelligence from Reveal(x) 360—including detections of indicators of compromise (IOC)—with other security logs for faster threat detection, deeper investigation, and more confident incident response.
For line of business, Amazon Security Lake optimizes the cost of storing and querying security data from single cloud, multicloud, and on-premises tools and environments. Security Lake also provides a set of core AWS-native security logs to further minimize costs and improve performance.
How Amazon Security Lake Works
ExtraHop’s integration with Amazon Security Lake enables Reveal(x) 360 to send detections of IOCs and advanced threats identified on the network to the AWS customer’s Security Lake. AWS customers who subscribe to Amazon Security Lake can access ExtraHop data, as well as data sources from other tools the customer uses, for a wide range of use cases.
Diagram of the ExtraHop Reveal(x) 360 Integration with Amazon Security Lake.
To learn more about Reveal(x) 360, visit our AWS Marketplace listing. You can also request a 30-day trial of our Reveal(x) 360 Standard, our VPC Flow Logs-based subscription for AWS.
Discover more