Identify Amazon Macie findings and take all the necessary actions to protect business-critical and sensitive information such as credit cards, financial records or Personally Identifiable Information (PII), stored within Amazon S3. Amazon Macie generates a finding each time it detects a potential policy violation for an Amazon Simple Storage Service (Amazon S3) bucket or it discovers sensitive data in an S3 object. A security finding is a detailed report of a potential policy abuse or sensitive data that Amazon Macie found. Each finding provides a severity rating, information about the affected AWS cloud resource, and additional details such as when and how Macie found the issue.
This rule can help you work with the AWS Well-Architected Framework.
Amazon Macie is a data security service that utilizes machine learning to automatically discover, classify, and protect critical data within AWS cloud. Macie can help you with governance, compliance and audit standards. For example, the service can enable you to comply with General Data Protection Regulation (GDPR) regulations around encryption and pseudonymization of data as it recognizes Personally Identifiable Information (PII). Through Amazon Macie findings you can achieve preventive security, safeguard your sensitive data, automate compliance (including GDPR compliance), and avoid inadvertent data leaks.
Audit
To verify your AWS cloud account for Amazon Macie security findings, perform the following operations:
Remediation / Resolution
To access, analyze, and resolve any Amazon Macie security findings identified within your AWS cloud account, perform the following operations:
Note: As an example, this section demonstrates how to analyze and resolve an Amazon Macie policy finding detected for an Amazon S3 bucket that is not encrypted using S3 Server-Side Encryption (S3 SSE). A policy finding is a detailed report of a potential policy violation for an S3 bucket. Macie generates these findings as part of its ongoing monitoring activities for your Amazon S3 data.References
- AWS Official Documentation
- Amazon Macie
- What Is Amazon Macie Classic?
- Concepts and Terminology
- Analyzing Amazon Macie findings
- Types of Amazon Macie findings
- Viewing findings on the Amazon Macie console
- Severity scoring for Amazon Macie findings
- AWS Command Line Interface (CLI) Documentation
- macie2
- list-findings
- get-findings
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Amazon Macie Findings
Risk Level: