This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Topic 5.6 of Cloud Monitoring, Compliance, and Risk Management
AWS Security Lake + OpenSearch as cloud-native SIEM, Sentinel and Splunk for hybrid environments, detection rule categories, SOAR automation with EventBridge + Step Functions, and SIEM effectiveness metrics.
By the end of this topic, you will
Quadrant 1 · e-Tutorial
Quadrant 2 · e-Content
Quadrant 3 · Web Resources
Downloadable reference material
External links
AWS Security Lake Documentation
AWS Security Lake user guide covering OCSF schema, sources, and Athena integration.
Microsoft Sentinel Documentation
Microsoft Sentinel cloud-native SIEM documentation including KQL and playbook authoring.
OCSF (Open Cybersecurity Schema Framework)
OCSF interactive schema browser used by AWS Security Lake and multiple SIEM vendors.
Palo Alto Cortex XSOAR Documentation
XSOAR SOAR platform documentation for playbook design and integration development.
Quadrant 4 · Self-Assessment
Monitoring, Auditing and Compliance
CloudTrail, VPC Flow Logs, AWS Config, GuardDuty, Security Hub, SCPs, and Indian compliance frameworks.
Cloud Security: Complete Assessment
Comprehensive 120-question assessment covering all six chapters of the Cloud Security eBook 2026.