As part of effort to leverage Cloud Detection and Response (CDR) workflows such as Elastic CSPM and CNVM for 3rd party integrations, the vulnerabilities data from Elastic Amazon Inspector integration needs to be enriched just like previous enhancements for Wiz and Qualys VMDR.
For this work, the aws.inspector data stream which ingests exported vulnerabilities must be enriched to support Elastic CNVM workflow.
Tasks:
Success Criteria
The Vulnerabilities findings from Amazon Inspector should be part of the data view suggested and mapped to the ECS schema supported by Cloud Security features.
To develop ES and Kibana assets (transforms, ingest pipelines, data views, etc.) required to make the data from Amazon Inspector integration available in the Cloud Security features
As part of effort to leverage Cloud Detection and Response (CDR) workflows such as Elastic CSPM and CNVM for 3rd party integrations, the vulnerabilities data from Elastic Amazon Inspector integration needs to be enriched just like previous enhancements for Wiz and Qualys VMDR.
For this work, the
aws.inspectordata stream which ingests exported vulnerabilities must be enriched to support Elastic CNVM workflow.Tasks:
Success Criteria
The Vulnerabilities findings from Amazon Inspector should be part of the data view suggested and mapped to the ECS schema supported by Cloud Security features.
To develop ES and Kibana assets (transforms, ingest pipelines, data views, etc.) required to make the data from Amazon Inspector integration available in the Cloud Security features