AWS Security Data Lake and the Devo Platform

In the ever-evolving cybersecurity landscape, the need for a comprehensive security data lake (SDL) has become important to some enterprises. Organizations face multi-vector threats that demand extensive data analysis to effectively counter them. Recognizing this critical requirement, Amazon Web Services (AWS) introduced the AWS Security Data Lake alongside the OCSF (Open Cybersecurity Schema Framework) data schema at re:Invent 2022–setting a new standard for AWS infrastructure and associated applications.

We are thrilled to announce that Devo has partnered with AWS as an official AWS Security Data Lake Partner. This collaboration marks an exciting new chapter for Devo, amplifying our ability to detect and neutralize threats within enterprise environments. With this enhancement to the Devo Platform, Devo now seamlessly ingests OCSF data, fully embracing and leveraging the AWS Security Data Lake. This new service enables our mutual customers to create a specialized data lake to aggregate, normalize, and store security data.

OCSF offers immense value to the cybersecurity community by providing a standardized and interoperable way to share and analyze cybersecurity data across different tools and platforms. In today’s complex threat landscape, security professionals rely on many tools and systems to detect, prevent, and respond to cyber threats. However, these tools often use proprietary data formats and lack a common language for sharing threat intelligence. OCSF addresses this challenge by providing a structured and open framework that allows organizations to define and share cybersecurity data in a consistent and standardized manner. This interoperability reduces the complexity of integrating diverse security tools, enabling security teams to work more efficiently and effectively.

The value of OCSF extends beyond simplifying data sharing and integration. It promotes collaboration among cybersecurity practitioners and organizations by fostering a community-driven approach to developing and enhancing the schema. This collaborative environment encourages the sharing of best practices, threat intelligence, and cyber threat indicators, ultimately strengthening the global cybersecurity posture. The open nature of OCSF ensures that it remains adaptable and responsive to emerging threats and evolving technology trends. As the cybersecurity landscape continues to evolve, OCSF serves as a critical foundation for building resilient and interconnected security ecosystems that can better defend against cyber threats. OCSF’s value lies in its ability to standardize data sharing, foster collaboration, and enhance the overall effectiveness of cybersecurity operations in an increasingly interconnected digital world.

This initiative would not have been possible without the long-standing strategic partnership between Devo and AWS. Devo and AWS are committed to working together to deliver compelling solutions that solve the challenges of our mutual customers.

To learn more about Devo’s integration with AWS Security Data Lake, review the documentation and discover the power of this formidable alliance and safeguard your organization against emerging cyber threats like with the capabilities of the Devo Platform in conjunction with the AWS Security Data Lake.