Continuously audit and monitor KMS key configurations and enforce security compliance as code with Panther.
AWS KMS is a managed service used to create, store, and control encryption keys to encrypt your data in your applications. Use Panther to track real-time changes to your KMS keys to ensure configurations meet your business requirements for security and compliance.
Monitoring KMS is critical for understanding the history of encryption key changes and detecting suspicious activity. Use Panther’s built in policies for continuous monitoring of KMS resources, or write your own detections in Python to fit your internal business use cases.
Common security use cases for KMS Key with Panther include:
The integration is simple and fast:
Use Panther to search all KMS keys in an AWS account by name, view their compliance status, associated policies, and configured remediations. Learn more about using Panther to analyze your AWS logs for security insights.
Audit changes to AWS Certificate manager
Track account changes in real-time and detect suspicious activity
Monitor password policies for your AWS account
Audit changes to AWS Network ACL
Audit changes to the security group in your EC2 instances.
Continuously audit your EC2 Volume configurations
Track real-time changes to your AWS GuardDuty
Detect and alert on unauthorized access to your S3 buckets.