Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8g and M8g instances are available in AWS GovCloud (US-West) and R8g and M8g instances are available in AWS GovCloud (US-East) regions. These instances are powered by AWS Graviton4 processors and deliver up to 30% better performance compared to AWS Graviton3-based instances. They are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software to enhance the performance and security of your workloads.

AWS Graviton4-based Amazon EC2 instances deliver the best performance and energy efficiency for a broad range of workloads running on Amazon EC2. These instances offer larger instance sizes with up to 3x more vCPUs and memory compared to Graviton3-based Amazon C8g, M8g and R8g instances. AWS Graviton4 processors are up to 40% faster for databases, 30% faster for web applications, and 45% faster for large Java applications than AWS Graviton3 processors. C8g and R8g instances are available in 12 different instance sizes, including two bare metal sizes. They offer up to 50 Gbps enhanced networking bandwidth and up to 40 Gbps of bandwidth to the Amazon Elastic Block Store (Amazon EBS).

To learn more, see Amazon EC2 C8g Instances, Amazon EC2 M8g Instances, and Amazon EC2 R8g Instances. To explore how to migrate your workloads to Graviton-based instances, see AWS Graviton Fast Start program and Porting Advisor for Graviton. To get started, see the AWS GovCloud (US) Console.

​Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8g and M8g instances are available in AWS GovCloud (US-West) and R8g and M8g instances are available in AWS GovCloud (US-East) regions. These instances are powered by AWS Graviton4 processors and deliver up to 30% better performance compared to AWS Graviton3-based instances. They are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software to enhance the performance and security of your workloads. AWS Graviton4-based Amazon EC2 instances deliver the best performance and energy efficiency for a broad range of workloads running on Amazon EC2. These instances offer larger instance sizes with up to 3x more vCPUs and memory compared to Graviton3-based Amazon C8g, M8g and R8g instances. AWS Graviton4 processors are up to 40% faster for databases, 30% faster for web applications, and 45% faster for large Java applications than AWS Graviton3 processors. C8g and R8g instances are available in 12 different instance sizes, including two bare metal sizes. They offer up to 50 Gbps enhanced networking bandwidth and up to 40 Gbps of bandwidth to the Amazon Elastic Block Store (Amazon EBS). To learn more, see Amazon EC2 C8g Instances, Amazon EC2 M8g Instances, and Amazon EC2 R8g Instances. To explore how to migrate your workloads to Graviton-based instances, see AWS Graviton Fast Start program and Porting Advisor for Graviton. To get started, see the AWS GovCloud (US) Console.  

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8g instances are available in AWS Europe (Zurich) region. These instances are powered by AWS Graviton4 processors and deliver up to 30% better performance compared to AWS Graviton3-based instances. Amazon EC2 C8g instances are built for compute-intensive workloads, such as high performance computing (HPC), batch processing, gaming, video encoding, scientific modeling, distributed analytics, CPU-based machine learning (ML) inference, and ad serving. These instances are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software to enhance the performance and security of your workloads.

AWS Graviton4-based Amazon EC2 instances deliver the best performance and energy efficiency for a broad range of workloads running on Amazon EC2. These instances offer larger instance sizes with up to 3x more vCPUs and memory compared to Graviton3-based Amazon C7g instances. AWS Graviton4 processors are up to 40% faster for databases, 30% faster for web applications, and 45% faster for large Java applications than AWS Graviton3 processors. C8g instances are available in 12 different instance sizes, including two bare metal sizes. They offer up to 50 Gbps enhanced networking bandwidth and up to 40 Gbps of bandwidth to the Amazon Elastic Block Store (Amazon EBS).

To learn more, see Amazon EC2 C8g Instances. To get started, see the AWS Management Console.

​Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8g instances are available in AWS Europe (Zurich) region. These instances are powered by AWS Graviton4 processors and deliver up to 30% better performance compared to AWS Graviton3-based instances. Amazon EC2 C8g instances are built for compute-intensive workloads, such as high performance computing (HPC), batch processing, gaming, video encoding, scientific modeling, distributed analytics, CPU-based machine learning (ML) inference, and ad serving. These instances are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software to enhance the performance and security of your workloads. AWS Graviton4-based Amazon EC2 instances deliver the best performance and energy efficiency for a broad range of workloads running on Amazon EC2. These instances offer larger instance sizes with up to 3x more vCPUs and memory compared to Graviton3-based Amazon C7g instances. AWS Graviton4 processors are up to 40% faster for databases, 30% faster for web applications, and 45% faster for large Java applications than AWS Graviton3 processors. C8g instances are available in 12 different instance sizes, including two bare metal sizes. They offer up to 50 Gbps enhanced networking bandwidth and up to 40 Gbps of bandwidth to the Amazon Elastic Block Store (Amazon EBS). To learn more, see Amazon EC2 C8g Instances. To get started, see the AWS Management Console.  

Amazon OpenSearch Service introduces OI2 instances, expanding the OpenSearch Optimized Instance family. The new OI2 instances delivers up to 9% higher indexing throughput compared to OR2 instances and up to 33% over I8g instances in our internal benchmarks.

The new OI2 OpenSearch Optimized instances use the same architecture as the OR2 instances, leveraging best-in-class cloud technologies like Amazon S3, to provide high durability, and improved price-performance for higher indexing throughput better for indexing heavy workload. Each OpenSearch Optimized instance is provisioned with compute, 3rd generation AWS Nitro SSDs for caching, and remote Amazon S3-based managed storage. OI2 offers pay-as-you-go pricing and reserved instances, with a simple hourly rate for the instance including the NVMe storage, as well as managed storage provisioned. OI2 instances come in sizes ‘large’ through ‘24xlarge’, and offer compute, memory, and up to 22.5 TB storage. Please refer to the Amazon OpenSearch Service pricing page for pricing details.

OI2 instance family is now available on Amazon OpenSearch Service across 12 regions globally: US East (N. Virginia, Ohio), US West (Oregon), Canada (Central), Asia Pacific (Mumbai, Singapore, Sydney, Tokyo), Europe (Frankfurt, Ireland, London, Spain).

​Amazon OpenSearch Service introduces OI2 instances, expanding the OpenSearch Optimized Instance family. The new OI2 instances delivers up to 9% higher indexing throughput compared to OR2 instances and up to 33% over I8g instances in our internal benchmarks.
The new OI2 OpenSearch Optimized instances use the same architecture as the OR2 instances, leveraging best-in-class cloud technologies like Amazon S3, to provide high durability, and improved price-performance for higher indexing throughput better for indexing heavy workload. Each OpenSearch Optimized instance is provisioned with compute, 3rd generation AWS Nitro SSDs for caching, and remote Amazon S3-based managed storage. OI2 offers pay-as-you-go pricing and reserved instances, with a simple hourly rate for the instance including the NVMe storage, as well as managed storage provisioned. OI2 instances come in sizes ‘large’ through ‘24xlarge’, and offer compute, memory, and up to 22.5 TB storage. Please refer to the Amazon OpenSearch Service pricing page for pricing details. OI2 instance family is now available on Amazon OpenSearch Service across 12 regions globally: US East (N. Virginia, Ohio), US West (Oregon), Canada (Central), Asia Pacific (Mumbai, Singapore, Sydney, Tokyo), Europe (Frankfurt, Ireland, London, Spain).  

Amazon Redshift Serverless announces the general availability of dual-stack mode that supports Internet Protocol version 6 (IPv6). This enhancement enables you to modernize your network infrastructure and meet the growing demands of internet connectivity.

Redshift Serverless supports configuring your Redshift workgroups with both IPv4 and IPv6 addresses (dual-stack) or IPv4-only configurations within your AWS Virtual Private Clouds (VPCs). You can enable IPv6 support when creating new Redshift Serverless workgroups or modify existing workgroups to support IPv6 addressing. With this capability, you can deploy Redshift warehouses in IPv6-enabled VPC subnets and configure network settings to support the expanding address space requirements of your applications. Your applications can now communicate with Redshift warehouses using either IPv4 or IPv6 protocols, ensuring compatibility with both existing and future network architectures.

This feature is available in all AWS commercial regions where Redshift Serverless is available. To get started, read the documentation and blog.

​Amazon Redshift Serverless announces the general availability of dual-stack mode that supports Internet Protocol version 6 (IPv6). This enhancement enables you to modernize your network infrastructure and meet the growing demands of internet connectivity. Redshift Serverless supports configuring your Redshift workgroups with both IPv4 and IPv6 addresses (dual-stack) or IPv4-only configurations within your AWS Virtual Private Clouds (VPCs). You can enable IPv6 support when creating new Redshift Serverless workgroups or modify existing workgroups to support IPv6 addressing. With this capability, you can deploy Redshift warehouses in IPv6-enabled VPC subnets and configure network settings to support the expanding address space requirements of your applications. Your applications can now communicate with Redshift warehouses using either IPv4 or IPv6 protocols, ensuring compatibility with both existing and future network architectures.
This feature is available in all AWS commercial regions where Redshift Serverless is available. To get started, read the documentation and blog.  

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8i and C8i-flex instances are available in the Asia Pacific (Singapore) region. These instances are powered by custom Intel Xeon 6 processors, available only on AWS, delivering the highest performance and fastest memory bandwidth among comparable Intel processors in the cloud. These C8i and C8i-flex instances offer up to 15% better price-performance, and 2.5x more memory bandwidth compared to previous generation Intel-based instances. They deliver up to 20% higher performance than C7i and C7i-flex instances, with even higher gains for specific workloads. The C8i and C8i-flex are up to 60% faster for NGINX web applications, up to 40% faster for AI deep learning recommendation models, and 35% faster for Memcached stores compared to C7i and C7i-flex.

C8i-flex are the easiest way to get price performance benefits for a majority of compute intensive workloads like web and application servers, databases, caches, Apache Kafka, Elasticsearch, and enterprise applications. They offer the most common sizes, from large to 16xlarge, and are a great first choice for applications that don’t fully utilize all compute resources.

C8i instances are a great choice for all memory-intensive workloads, especially for workloads that need the largest instance sizes or continuous high CPU usage. C8i instances offer 13 sizes including 2 bare metal sizes and the new 96xlarge size for the largest applications.

To get started, sign in to the AWS Management Console. Customers can purchase these instances via Savings Plans, On-Demand instances, and Spot instances. For more information about the new C8i and C8i-flex instances visit the AWS News blog.

​Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8i and C8i-flex instances are available in the Asia Pacific (Singapore) region. These instances are powered by custom Intel Xeon 6 processors, available only on AWS, delivering the highest performance and fastest memory bandwidth among comparable Intel processors in the cloud. These C8i and C8i-flex instances offer up to 15% better price-performance, and 2.5x more memory bandwidth compared to previous generation Intel-based instances. They deliver up to 20% higher performance than C7i and C7i-flex instances, with even higher gains for specific workloads. The C8i and C8i-flex are up to 60% faster for NGINX web applications, up to 40% faster for AI deep learning recommendation models, and 35% faster for Memcached stores compared to C7i and C7i-flex. C8i-flex are the easiest way to get price performance benefits for a majority of compute intensive workloads like web and application servers, databases, caches, Apache Kafka, Elasticsearch, and enterprise applications. They offer the most common sizes, from large to 16xlarge, and are a great first choice for applications that don’t fully utilize all compute resources. C8i instances are a great choice for all memory-intensive workloads, especially for workloads that need the largest instance sizes or continuous high CPU usage. C8i instances offer 13 sizes including 2 bare metal sizes and the new 96xlarge size for the largest applications. To get started, sign in to the AWS Management Console. Customers can purchase these instances via Savings Plans, On-Demand instances, and Spot instances. For more information about the new C8i and C8i-flex instances visit the AWS News blog.  

AWS Security Incident Response is now available to customers in ten additional opt-in AWS Regions: Africa (Cape Town), Asia Pacific (Hong Kong, Hyderabad, Jakarta, Melbourne), Europe (Zurich, Milan, Spain), Middle East (UAE, Bahrain). You can now use these additional regions to prepare for, respond to, and recover from security events faster and more effectively.

AWS Security Incident Response streamlines every step of the security incident response lifecycle through automated security finding monitoring and triage, AI-powered investigation, and containment capabilities. When specialized expertise is required, Security Incident Response gives you direct 24/7 access to a dedicated group of AWS security experts who respond to your request within minutes. This powerful combination of automation and expertise enables you to confidently scale your security operations, so you can focus on innovation and growth.

For more information, please visit the AWS Security Incident Response page and documentation for more information. See the Supported Configurations page for regional and language support. 

​AWS Security Incident Response is now available to customers in ten additional opt-in AWS Regions: Africa (Cape Town), Asia Pacific (Hong Kong, Hyderabad, Jakarta, Melbourne), Europe (Zurich, Milan, Spain), Middle East (UAE, Bahrain). You can now use these additional regions to prepare for, respond to, and recover from security events faster and more effectively. AWS Security Incident Response streamlines every step of the security incident response lifecycle through automated security finding monitoring and triage, AI-powered investigation, and containment capabilities. When specialized expertise is required, Security Incident Response gives you direct 24/7 access to a dedicated group of AWS security experts who respond to your request within minutes. This powerful combination of automation and expertise enables you to confidently scale your security operations, so you can focus on innovation and growth. For more information, please visit the AWS Security Incident Response page and documentation for more information. See the Supported Configurations page for regional and language support.   

Amazon OpenSearch Service now offers a new multi-tier storage option powered by OpenSearch Optimized Instances. This new architecture combines Amazon S3 cloud technology with local instance storage to deliver improved durability and performance. The new multi-tier architecture features two tiers: hot and warm. The hot tier handles frequently accessed data, while the warm tier leverages Amazon S3 for cost-effective storage of less frequently accessed data. 

Until now, Amazon OpenSearch Service supported a warm tier through UltraWarm, which provided cost-effective storage for read-only data. The new warm tier powered by OpenSearch Optimized instances supports write operations, providing greater flexibility for data management. You can automate rotating data from hot to warm as it ages using Index State Management feature.

For warm tier deployments, customers can use OpenSearch Optimized (OI2) instances (size ‘large’ to ‘8xlarge’), with addressable warm of up to five times the local cache size. tandard Managed Storage charges apply for warm data. The new Multi-tier experience is available on OpenSearch 3.3 and above. For more information please refer to the documentation.

New Multi-Tier experience on OI2 instance family is now available on Amazon OpenSearch Service across 12 regions globally: US East (N. Virginia, Ohio), US West (Oregon), Canada (Central), Asia Pacific (Mumbai, Singapore, Sydney, Tokyo), Europe (Frankfurt, Ireland, London, Spain).  Please refer to the Amazon OpenSearch Service pricing page for pricing details

​Amazon OpenSearch Service now offers a new multi-tier storage option powered by OpenSearch Optimized Instances. This new architecture combines Amazon S3 cloud technology with local instance storage to deliver improved durability and performance. The new multi-tier architecture features two tiers: hot and warm. The hot tier handles frequently accessed data, while the warm tier leverages Amazon S3 for cost-effective storage of less frequently accessed data.  Until now, Amazon OpenSearch Service supported a warm tier through UltraWarm, which provided cost-effective storage for read-only data. The new warm tier powered by OpenSearch Optimized instances supports write operations, providing greater flexibility for data management. You can automate rotating data from hot to warm as it ages using Index State Management feature.
For warm tier deployments, customers can use OpenSearch Optimized (OI2) instances (size ‘large’ to ‘8xlarge’), with addressable warm of up to five times the local cache size. tandard Managed Storage charges apply for warm data. The new Multi-tier experience is available on OpenSearch 3.3 and above. For more information please refer to the documentation. New Multi-Tier experience on OI2 instance family is now available on Amazon OpenSearch Service across 12 regions globally: US East (N. Virginia, Ohio), US West (Oregon), Canada (Central), Asia Pacific (Mumbai, Singapore, Sydney, Tokyo), Europe (Frankfurt, Ireland, London, Spain).  Please refer to the Amazon OpenSearch Service pricing page for pricing details  

• Categoría: Noticias de Microsoft

diciembre 17, 2025

Preparar la ciberseguridad sanitaria para el futuro: lo que todo líder debería saber

Por: Kees Hertogh, vicepresidente de marketing del sector público y sanidad en Microsoft.

La ciberseguridad sanitaria no se trata solo de tecnología: se trata de personas, confianza y el futuro de la atención.

Los líderes sanitarios hoy en día navegan por un panorama de ciberamenazas crecientes y una mayor complejidad operativa. La ciberseguridad no es solo un requisito técnico: es esencial para generar confianza en el paciente, garantizar la continuidad de la atención y facilitar la innovación futura en el sector sanitario.

Descarguen el libro electrónico de seguridad sanitaria

En la Cumbre CISO del Instituto Scottsdale 2025, los principales líderes de seguridad se reunieron para compartir historias reales, grandes desafíos y soluciones prácticas para mantener los datos de los pacientes seguros en un mundo que cambia con rapidez. Como seguimiento, publicaron un informe sobre el Futuro para la Ciberseguridad Sanitaria: IA, Transformación en la Nube y Capacidades para el Mañana.

Aquí tienen algunos puntos destacados:

Por qué la ciberseguridad es más importante que nunca

La sanidad es un sector que es blanco de ataques de manera frecuente y con una fuerte regulación, con los resultados para los pacientes en juego.

• Las amenazas cibernéticas evolucionan con rapidez. La IA y la transformación en la nube abren nuevas puertas para la atención, pero también nuevos riesgos. Los ciberdelincuentes se vuelven más inteligentes y las organizaciones sanitarias deben mantener el paso para proteger la información sensible y ayudar a garantizar la seguridad del paciente.
• Es personal. Los líderes sanitarios nos recordaron que cada decisión de seguridad afecta a personas reales: pacientes, familias y personal. El objetivo siempre es ofrecer la mejor atención y de forma segura.

Lo que los equipos sanitarios deben saber sobre ciberseguridad

1. La colaboración es fundamental

CEOs, CIOs y CISOs deben trabajar juntos. La innovación y la seguridad van de la mano, y las sólidas alianzas ayudan a las organizaciones a mantenerse por delante de las amenazas.

2. Oportunidades y desafíos de IA

La IA puede hacer que la sanidad sea más inteligente y eficiente, pero también introduce nuevos riesgos. Los líderes deben plantearse preguntas difíciles sobre cómo las herramientas de IA utilizan los datos, cómo se forman y cómo mantenerlos seguros.

3. Formación y mejora de habilidades

Invertir en tecnología es solo la mitad de la batalla. El personal necesita formación continua para utilizar nuevas herramientas de forma segura y eficaz. Los incentivos creativos —como el tiempo de formación remunerado o las trayectorias profesionales— ayudan a los equipos a crecer y adaptarse.

4. Desmantelar compartimentos

Las estructuras heredadas pueden ralentizar el progreso. Los equipos integrados y la colaboración multifuncional son clave para encontrar y corregir vulnerabilidades con rapidez.

5. Gestión de riesgos de terceros

Las relaciones con proveedores son más complejas que nunca. Las organizaciones deben elevar el listón para las evaluaciones de proveedores, garantizar la continuidad del negocio y educar a los usuarios sobre los riesgos.

6. Resiliencia y respuesta

La prevención es importante, pero la detección y la respuesta rápida son esenciales. Las herramientas impulsadas por IA pueden ayudar a detectar comportamientos sospechosos, pero la supervisión humana sigue siendo crucial.

La seguridad del paciente, la continuidad de la atención y la confianza en la atención sanitaria dependen de mantener la ciberseguridad correctamente

Las organizaciones sanitarias se enfrentan a un punto de inflexión crítico. El éxito requerirá:

• Adoptar defensas impulsadas por IA
• Construir redes más sólidas entre los profesionales de la seguridad
• Acelerar la sofisticación de los proveedores
• Desarrollo de protocolos ágiles de respuesta a incidentes

Seguridad primero en acción: Red de Salud de St. Luke

Para la Red de Salud de la Universidad St. Luke’s, proteger los datos de los pacientes es clave para ofrecer una atención de calidad. Atiende a personas en Pensilvania y Nueva Jersey en 13 hospitales y 607 consultas, incluidas varias especialidades, y cuenta con un patrimonio de datos considerable que proteger.

Lograr esa misión vital se hizo más fácil cuando St. Luke’s redujo su número de herramientas de seguridad y obtuvo una visibilidad mucho mayor sobre los datos que necesita para mantener la seguridad.

Sustituyó varias soluciones de seguridad de terceros por Microsoft Sentinel, Microsoft Defender for Cloud y Microsoft Defender for Office 365, para ampliar su base de soluciones de seguridad de Microsoft, lo que permite una postura de seguridad unificada que ayuda a los equipos de seguridad a hacer lo que mejor saben hacer: proteger St. Luke’s de un panorama de amenazas en constante evolución.

Creo que tal vez sea la primera empresa a punto de crear el modelo predictivo que nos llevará más allá de la detección de amenazas y permitirá la prevención. Por eso confiamos en Microsoft.

–David Finkelstein, director de seguridad de la información, Red de Salud de la Universidad St. Luke’s

Construyamos juntos un futuro seguro para la sanidad

En Microsoft, nos centramos en ayudar a las organizaciones a consolidar capacidades de seguridad fragmentadas y aplicar inteligencia para obtener mejores resultados. Desde el lanzamiento de la Iniciativa Futuro Seguro (SFI, por sus siglas en inglés) en noviembre de 2023, Microsoft ha movilizado el equivalente a más de 34.000 ingenieros para mitigar riesgos y mejorar la seguridad tanto para Microsoft como para nuestros clientes.¹

Guiados por tres principios de seguridad—seguros por diseño, por defecto y en las operaciones—hemos logrado avances medibles en las áreas de cultura, gobernanza y nuestros seis pilares de ingeniería. Aun así, queda mucho por hacer, y los equipos de toda la empresa trabajan para mejorar la seguridad de cada producto, abordar los aprendizajes de cada incidente y mejorar de manera continua nuestros métodos y prácticas.

Microsoft ha sido líder durante años en el desarrollo de tecnologías de IA conforme a principios responsables de IA diseñados para cumplir con los requisitos de cumplimiento, proteger datos y sistemas, y mantener la confianza del cliente.

Descubran cómo la IA puede ayudar a reforzar la seguridad y el cumplimiento sanitario

• Descarguen el libro electrónico de seguridad sanitaria.
• Consulten la infografía de seguridad y cumplimiento sanitario.
• Para obtener información sobre cómo adelantarse a los retos y amenazas emergentes de la IA y la seguridad de la IA, consulten el Informe de Decisión de IA en la Salud 2025.
• Exploren las soluciones de seguridad de Microsoft.
• Sigan nuestras actualizaciones de ciberseguridad en Microsoft Security, LinkedIn y en X @MSFTSecurity.
• Lean el informe completo de la Cumbre CISO 2025 del Instituto Scottsdale.

¹Informe de progreso de la Iniciativa Futuro Seguro, noviembre de 2025, Microsoft

Etiquetas:

• Salud
• Seguridad

The post Preparar la ciberseguridad sanitaria para el futuro: lo que todo líder debería saber appeared first on Source LATAM.

​The post Preparar la ciberseguridad sanitaria para el futuro: lo que todo líder debería saber appeared first on Source LATAM.  

Amazon Connect alerts on real-time metrics now provide the specific agents, queues, flows, or routing profiles that exceeded thresholds and triggered the alert. This enables managers to respond faster to customer experience and operational issues by eliminating the need to manually investigate the root cause of the alert. For example, alerts on elevated queue wait times now include the exact queues affected, so managers can reassign agents to those queues. These detailed alerts can be sent through email, tasks, and Amazon EventBridge.

This feature is available in all regions where Amazon Connect is offered. To learn more, please visit our documentation and our webpage.

​Amazon Connect alerts on real-time metrics now provide the specific agents, queues, flows, or routing profiles that exceeded thresholds and triggered the alert. This enables managers to respond faster to customer experience and operational issues by eliminating the need to manually investigate the root cause of the alert. For example, alerts on elevated queue wait times now include the exact queues affected, so managers can reassign agents to those queues. These detailed alerts can be sent through email, tasks, and Amazon EventBridge. This feature is available in all regions where Amazon Connect is offered. To learn more, please visit our documentation and our webpage.  

AWS Security Incident Response now offers integration with the cloud-based team collaboration platform Slack, enabling you to prepare for, respond to, and recover from security events faster and more effectively while maintaining your existing notification and communication workflows. With the bidirectional integration, you can create and update cases in both the Security Incident Response console and Slack with automatic data replication. Each Security Incident Response case is represented as a dedicated Slack channel, while comments and attachments sync instantly. This gives responders immediate access to critical case information and enables more efficient collaboration regardless of tool preference.

The integration helps security teams engage faster and accelerate response times by automatically adding Security Incident Response watchers to the corresponding Slack channel. This integration is available as an open-source solution on GitHub, providing customers and partners the opportunity to customize and extend the functionality. The integration leverages EventBridge which allows customers to continue using their existing security incident management and notification tooling, while leveraging AWS Security Incident Response capabilities. The solution features a modular architecture, and includes guidance on how to use Amazon Q Developer, Kiro, or similar AI assistants that help make it easy to add new integration targets beyond Slack.

To get started with the AWS Security Incident Response Slack integration, visit our GitHub repository. Visit our technical documentation for Slack for implementation details. Learn more about AWS Security Incident Response in the service’s User Guide.

​AWS Security Incident Response now offers integration with the cloud-based team collaboration platform Slack, enabling you to prepare for, respond to, and recover from security events faster and more effectively while maintaining your existing notification and communication workflows. With the bidirectional integration, you can create and update cases in both the Security Incident Response console and Slack with automatic data replication. Each Security Incident Response case is represented as a dedicated Slack channel, while comments and attachments sync instantly. This gives responders immediate access to critical case information and enables more efficient collaboration regardless of tool preference. The integration helps security teams engage faster and accelerate response times by automatically adding Security Incident Response watchers to the corresponding Slack channel. This integration is available as an open-source solution on GitHub, providing customers and partners the opportunity to customize and extend the functionality. The integration leverages EventBridge which allows customers to continue using their existing security incident management and notification tooling, while leveraging AWS Security Incident Response capabilities. The solution features a modular architecture, and includes guidance on how to use Amazon Q Developer, Kiro, or similar AI assistants that help make it easy to add new integration targets beyond Slack. To get started with the AWS Security Incident Response Slack integration, visit our GitHub repository. Visit our technical documentation for Slack for implementation details. Learn more about AWS Security Incident Response in the service’s User Guide.