Since Amazon Inspector was launched six years ago, the requirements of cloud customers and the associated vulnerability management have changed significantly. At its in-house exhibition re: Invent, AWS announces fundamental updates that expand the scope of the security service in terms of automation, container support and risk assessment.
Inspector monitors unintentional network access to EC2 instances and should automatically detect weak points. The tool not only examines the operating system for vulnerabilities, but also checks installed applications and standard configurations. In the old version of Inspector, the analysis scans could only be performed manually and only for a limited period of time. The new edition now promises continuous, automated monitoring of the systems.
Also new is the support of container-based workloads and the integration into Amazon EventBridge and AWS SecurityHub. In addition, the software’s risk assessment unit was further developed – it should be able to identify critical security gaps and highlight them as primary or secondary. Assessment scanning is now performed by the AWS System Manager Agent; the stand-alone Inspector scan agent has been abolished so that no additional agent has to be installed in the future. All details can be found in the announcement.