Enable Data Security Findings for AWS

Data Security Findings helps you discover and prioritize sensitive data risks in your AWS environment by automatically identifying and classifying sensitive information such as Personally Identifiable Information (PII), Protected Health Information (PHI), and financial data. This add-on keeps sensitive information within your AWS account while providing visibility across your environment. The findings can be used by Sysdig’s Risk engine to highlight potential blast radius during investigations and guide remediation efforts.

Sensitive data is analyzed in-place and remains within your AWS accounts during scanning.

AWS services that are currently supported for scanning include:

  • S3 Buckets
  • RDS Databases

Prerequisites

  • An AWS Account or Organization already connected to Sysdig.
  • A Sysdig Secure Risk Management or CNAPP subscription with the Data Security Findings add-on.

Data Security Findings is currently available through a guided onboarding process. Contact your Sysdig account team or support representative to enable this feature.

Enable Data Security Findings

  1. Contact your Sysdig account team or support representative to enable Data Security Findings for your AWS accounts.
  2. Once provisioned, log in to Sysdig Secure and navigate to Integrations > Cloud Accounts | AWS.
  3. Select the AWS account you want to verify. Data Security Findings will appear in the features list once enabled.

Check Enabled Status

You can confirm whether Data Security Findings is active for your account:

  1. In Sysdig Secure, go to Integrations > Environments | AWS.

  2. Select the account.

    The detail panel on the right will show the status of Data Security Findings.

  3. If onboarding is complete, the feature status will show Enabled.