Amazon DynamoDB

Version: AWS Log Forwarder v1.0.10 and above.

Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with scalability. It also offers encryption at rest, which eliminates the operational burden and complexity involved in protecting sensitive data along with options to delete expired items from tables automatically, to help reduce storage usage and the cost of storing data that is no longer relevant.

Netsurion's Open XDR platform monitors events from Amazon DynamoDB by parsing the AWS CloudTrail logs. Dashboards and reports in Netsurion's Open XDR platform allow you to monitor overall actions triggered related to DynamoDB and its DynamoDB Accelerator (DAX) service to keep you informed about its activities. It will trigger alerts whenever an action critical to the application is carried out.

For a new instance, integrate the AWS instance to Netsurion using the Netsurion integrator Lambda function, which will in turn deliver logs to Netsurion from AWS.

Once configured to deliver events to Netsurion Manager, the alerts, dashboards, and reports can be configured into Netsurion.

For an already-integrated AWS instance, make sure to update to AWS Log Forwarder to v1.0.10 or above.

Some of the Data Source Integrations available in Netsurion are listed below.

Alerts

Type Name Description
Security Amazon DynamoDB - Table deletion attempt This alert is triggered when an attempt is made to delete a DynamoDB table in AWS.
Security Amazon DynamoDB - Backup deletion attempt This alert is triggered when an attempt is made to delete a manual on-demand backup.
Security Amazon DynamoDB - DAX cluster deletion attempt This alert is triggered when an attempt is made to delete a DAX cluster.
Security Amazon DynamoDB - Parameter group deletion attempt This alert is triggered when an attempt is made to delete a parameter group of a DAX cluster in DynamoDB.
Security Amazon DynamoDB - DAX subnet deletion attempt This alert is triggered when an attempt to delete a subnet in a DAX cluster in DynamoDB.

Reports

Type Name Description
Security Amazon DynamoDB - Database activity This report will give a detailed overview of all activity related to the DynamoDB service.
Security Amazon DynamoDB - DAX cluster activity This report will give the details of all activity related specifically to the DAX cluster in DynamoDB.

Documentation

The configuration details are consistent with Netsurion version 9.3X and later, and ETS-AWS-LogForwarder v1.0.10 and above.

Download Integration Guide and How-to Guide for more information and to configuration instructions.