Event-driven harvesting (EDH) pulls data from AWS CloudWatch Events and AWS CloudTrail into a central event bus for use by InsightCloudSec's event-driven harvesting method. This modern approach to data collection improves the cadence with which InsightCloudSec can provide resource visibility and opportunities for remediation. This approach also enriches the data with life-cycle changes, thereby enabling auditing capabilities. With this EDH-provided data, identifying how a resource entered a noncompliant state becomes much easier at scale.
EDH (Currently AWS Only)
Currently EDH is available only for AWS.
This article focuses on using the Event-Driven Harvesting main page in InsightCloudSec to view harvested events and reported results, located in "Cloud --> Clouds --> Event-Driven Harvesting"
- For high-level information check out our Harvesting Overview
- For additional details specific to AWS EDH, check out AWS Event-Driven Harvesting
The Events tab for EDH displays details of the CloudWatch events that occur. These details show the account, cloud, and resource (Provider ID) upon which the action was taken; the date and time the action was taken, the user taking the action, and the specific action taken.
These details allow you to readily view actions taken and users responsible for taking them.
This live event feed updates in real time; as new CloudWatch events occur, they are added immediately to the list.
As with many InsightCloudSec features displaying cloud information, you can scope your clouds by account and/or badge.
Note: You can create a CSV download of EDH events using the download button to the right of the Reload/Refresh button:
The EDH Analytics tab displays a timeline of CloudWatch events. These events are shown as a composite; events are displayed simply as "Events", regardless of the type of event. For details on specific events, use the Events tab (above).
Updated 15 days ago