Dynatrace integrates with Amazon EventBridge to break the silos between DevSecOps teams by unifying security findings along the Software Development Lifecycle (SDLC) and enriching them with runtime context. Powered by OpenPipeline™, Dynatrace allows you to ingest, visualize, prioritize, and automate security findings, helping to reduce noise from alerts and provide focused remediation to the issues that matter to your critical production environments.

The complexity of multicloud environments

In complex multicloud environments, security findings are often siloed across build-time and runtime tooling, as well as spread across various environments. Thus, getting a holistic view of your security posture and risks is challenging. The consequences include:

• Time spent navigating various platforms to collect data.
• Difficulty prioritizing findings from disparate tools.
• Security coverage gaps.
• Excessive manual effort is required to notify stakeholders of critical findings.
• Remediation takes a long time.

Moreover, with the number of security findings generated, your DevSecOps teams might become overwhelmed and miss important issues that directly impact your production services and applications. A good example is a critical severity vulnerability discovered in a build-time artifact, such as a container image that isn’t deployed and doesn’t impact your runtime. Your DevSecOps teams shouldn’t be distracted by such findings and should instead focus on vulnerabilities in your production application that are exposed to the internet and present a real risk.

The Dynatrace solution

Dynatrace addresses these issues by providing unified security events ingest and analysis of security findings across cloud environments. The ingested findings are mapped to the monitored runtime entities, which allows you to assess the risks better and reprioritize remediation of the critical findings.

Security findings can be pushed to Dynatrace, as with Amazon EventBridge, or pulled from a third-party tool by a dedicated Dynatrace integration.

With built-in support for various products and security-finding standards, Dynatrace provides visibility into security posture from multiple stages of your SDLC. This allows you to orchestrate the findings effectively, drive faster remediation, discover security coverage gaps, optimize tooling usage, and maximize your ROI.

Ingest AWS EventBridge findings into Dynatrace

Dynatrace partners with AWS and serves as a destination for Amazon EventBridge rules. Depending on the use case, findings and logs can be forwarded to the dedicated OpenPipeline endpoints and ingested into Grail^TM.

Dynatrace supports security findings forwarded via Amazon EventBridge in the following scenarios:

• Ingested as raw events or in a supported generic standard data format, such as OCSF or ASFF.
• Forwarded as findings from the AWS Security Hub, including vulnerability, detection, and compliance events.
• Forwarded as container findings from the Amazon ECR (basic and enhanced scanning).

Dynatrace maps the ingested events to Semantic Dictionary conventions for the supported products and data formats. You can consume the events uniformly for visualization and analysis in Dashboards and Notebooks and automation use cases in Workflows.

For example, you can ingest Amazon ECR container image vulnerability findings into Dynatrace using Amazon EventBridge. Dynatrace provides a CloudFormation template and detailed instructions as part of the setup.Please read our documentation for individual integrations, Ingest Amazon ECR vulnerability findings and scan events, Ingest AWS Security Hub security findings, and our blog post, Enrich AWS ECR vulnerability findings with runtime context, for additional details on the integration setup and supported use cases.

Get started

Also, check out Amazon ECR monitoring & observability

Try it today

Leverage a seamless, out-of-the-box experience to optimize performance, reduce costs, and drive cloud-native innovation.

Contact your Dynatrace representative or visit our AWS integration page to start your free trial and see the difference intelligent cloud monitoring can make.