Investigate security events by using AWS CloudTrail Lake advanced queries

This blog post shows you how to use AWS CloudTrail Lake capabilities to investigate CloudTrail activity across AWS Organizations in response to a security incident scenario. We will walk you through two security-related scenarios while we investigate CloudTrail activity. The method described in this post will help you with the investigation process, allowing you to […]

advanced aws aws cloudtrail blog blog post capabilities cloudtrail compliance events identity incident intermediate (200) investigation organizations process response scenario security security blog security events security incident technical how-to