Sensitive data detected in S3

Scenario

Macie detected files containing sensitive data

How do I investigate?

  • Navigate to the Security Account and review the Macie Dashboard
  • Select Alerts from the side menu
  • Select each alert and review the details that Macie provides

Team Discussion

  • How can you prevent buckets from accidentally getting exposed publicly?
  • Can the solution/controls be deployed across all accounts in the AWS Organization?
    • If so, how would you deploy it?

Resources