Best IT Security Software for Amazon Web Services (AWS) - Page 21
View:
Compare the Top IT Security Software that integrates with Amazon Web Services (AWS) as of November 2025 - Page 21
Sort By:
This a list of IT Security software that integrates with Amazon Web Services (AWS). Use the filters on the left to add additional filters for products that have integrations with Amazon Web Services (AWS). View the products that work with Amazon Web Services (AWS) in the table below.
-
1
Amazon Application Recovery Controller (ARC) enables organizations to enhance the availability and resilience of their applications by providing tools to manage and automate recovery across AWS Regions and Availability Zones (AZs). It offers zonal shift and zonal auto-shift capabilities to swiftly mitigate impairments in multi-AZ applications by redirecting traffic from affected AZs to healthy ones. ARC also includes routing controls for multi-region applications, allowing for reliable traffic failover between AWS Regions. ARC performs continuous readiness checks, monitoring resource quotas, capacity, and configurations to ensure applications are prepared for recovery, with configurable safety rules to prevent unintended actions that could prolong recovery times.
-
2
AWS Elastic Disaster Recovery (AWS DRS) minimizes downtime and data loss by enabling rapid, reliable recovery of on-premises and cloud-based applications. It allows you to use AWS as a disaster recovery site for applications comprising physical and virtual servers, including databases. AWS DRS continuously replicates your source servers to a staging area subnet in your AWS account, utilizing cost-effective storage and minimal computing resources. In the event of a disaster, you can launch recovery instances on AWS within minutes, restoring applications to their most recent state or a previous point in time. The service also supports non-disruptive testing and failback to your primary site when needed.
-
3
DataBahn
DataBahn
DataBahn.ai is redefining how enterprises manage the explosion of security and operational data in the AI era. Our AI-powered data pipeline and fabric platform helps organizations securely collect, enrich, orchestrate, and optimize enterprise data—including security, application, observability, and IoT/OT telemetry—for analytics, automation, and AI. With native support for over 400 integrations and built-in enrichment capabilities, DataBahn streamlines fragmented data workflows and reduces SIEM and infrastructure costs from day one. The platform requires no specialist training, enabling security and IT teams to extract insights in real time and adapt quickly to new demands. We've helped Fortune 500 and Global 2000 companies reduce data processing costs by over 50% and automate more than 80% of their data engineering workloads. -
4
PQShield
PQShield
PQShield offers a comprehensive suite of post-quantum cryptography solutions designed to future-proof digital infrastructures against the emerging threats posed by quantum computing. Their UltraPQ-Suite encompasses a range of hardware and software products optimized for various use cases, including ultra-fast, ultra-small, and ultra-secure implementations. PQShield's offerings include PQPlatform-Lattice, a compact, FIPS 140-3 CAVP-compliant cryptographic engine supporting lattice-based algorithms like ML-KEM and ML-DSA; PQPlatform-CoPro, which combines hash-based and lattice-based cryptography engines for seamless integration into existing security subsystems; and PQPlatform-TrustSys, a fully autonomous, PQC-focused root-of-trust subsystem designed for minimal integration effort and robust side-channel protection. PQCryptoLib provides a general-purpose cryptographic library supporting both post-quantum and classical algorithms, facilitating smooth transitions to quantum systems. -
5
AWS IAM Identity Center
Amazon
AWS IAM Identity Center simplifies centralized access management across multiple AWS accounts and business applications. It enables users to access assigned accounts and applications from a unified portal. Administrators can manage user permissions centrally, assigning them based on job functions and customizing as needed. IAM Identity Center integrates with various identity sources, including Microsoft Active Directory, Okta, Ping Identity, JumpCloud, and Microsoft Entra ID, and supports standards like SAML 2.0 and SCIM for user provisioning. It facilitates attribute-based access control by allowing selection of user attributes such as cost center, title, or locale from the identity source. It supports multi-factor authentication (MFA) using methods like FIDO-enabled security keys, biometric authenticators, and time-based one-time passwords. -
6
Libelle DataMasking
Libelle
Libelle DataMasking (LDM) is a robust, enterprise-grade data masking solution that automates the anonymization of sensitive or personal data—such as names, addresses, dates, emails, IBANs, credit cards—and transforms them into realistic, logically consistent substitutes that maintain referential integrity across SAP and non‑SAP systems, including Oracle, SQL Server, IBM DB2, MySQL, PostgreSQL, SAP HANA, flat files, and cloud databases. Capable of processing up to 200,000 entries per second and supporting parallelized masking for massive datasets, LDM uses a multithreaded architecture to efficiently read, anonymize, and write data back with high performance. It features over 40 built‑in anonymization algorithms—such as number, alphanumeric, date shifting, name, email, IBAN masking, credit card obfuscation, and mapping algorithms—as well as templates for SAP modules (CRM, ERP, FI/CO, HCM, SD, SRM). -
7
Cosmian
Cosmian
Cosmian’s Data Protection Suite delivers a comprehensive, next-generation cryptography platform to secure sensitive data and applications in use, at rest, and in motion across cloud and edge environments. It includes Cosmian Covercrypt, a high-performance hybrid classical and post-quantum encryption library with traceable, fine-grained access control; Cosmian KMS, an open-source, centralized key management system that enables massive client-side encryption on the fly; and Cosmian VM, a plug-and-play, verifiable confidential virtual machine that continuously cryptographically verifies its own integrity without disrupting existing workflows. An AI Runner (“Cosmian AI”) operates within the confidential VM to enable secure model training, querying, and fine-tuning, no coding required. All components integrate via simple APIs and deploy rapidly through AWS, Azure, or Google Cloud marketplaces, empowering organizations to build zero-trust architectures. -
8
Cogent Security
Cogent Security
Cogent Security delivers an AI‑powered vulnerability management platform that autonomously orchestrates the entire VM lifecycle, providing 24/7 coverage at machine speed with 50 % less manual intervention. The system begins by ingesting real‑time context from your infrastructure, assets, configurations, threat intelligence, and business criticality, to dynamically prioritize risks based on exploit likelihood and potential impact. Through ROI‑based action planning, it surfaces the highest‑value remediation tasks and then automates orchestration workflows to deploy patches, configuration changes, or compensating controls. Built‑in AI agents continuously monitor progress and adapt plans as new vulnerabilities emerge, while program‑level reporting generates executive‑ready dashboards and compliance evidence on demand. Customers achieve a 2× reduction in mean time to remediate critical flaws and resolve findings 4× faster, all without expanding headcount. -
9
CloudCover CyberSafety Platform (CC/B1)
CloudCover
CloudCover CyberSafety B1 Platform (CCB1) is an advanced AI‑based SOAR security threat management solution that operates at sub‑second speed, ingesting real‑time context from an organization’s assets, configurations, threat intelligence, and business criticality to dynamically prioritize risks and deflect attacks with 99.9999999% accuracy and zero false positives. Leveraging patented deep‑learning risk orchestration, it has recorded and halted over 41 billion breach attempts in microseconds without compromise, continuously detecting, capturing, and preventing kompromat across cloud and on‑premises environments. CCB1 integrates seamlessly with existing security stacks to form a predictive CyberSafety layer that automates remediation workflows, deploying patches, configuration changes, or compensating controls, while built‑in AI agents adapt in real time to emerging threats. -
10
Palo Alto Networks Cloud NGFW
Palo Alto Networks
Palo Alto Networks Cloud NGFW for AWS delivers advanced network security designed specifically for cloud environments. It offers easy deployment with no infrastructure to manage, allowing users to protect AWS VPCs quickly through a managed service available on AWS Marketplace. The firewall provides consistent policy management, supports automation through APIs and Terraform, and integrates with Panorama for unified management. Cloud NGFW blocks intrusions, data exfiltration, and command-and-control traffic while enforcing Zero Trust principles. Its deep learning capabilities detect and prevent zero-day attacks in real time, offering full Layer 7 protection against web-based threats and evasions. This service streamlines cloud security by eliminating complex legacy appliances and securing traffic crossing trust boundaries. -
11
Sola Security
Sola Security
Sola Security is an AI-first security studio that empowers users to build tailored cybersecurity applications in minutes through a no-code, AI-driven interface. You simply pose a security question, like identifying misconfigured S3 buckets or compromised user accounts, and Sola AI instantly generates a working app complete with data queries, dashboards, alerts, and visual summaries, all adaptable to your existing infrastructure. It offers ready-made templates for common use cases across AWS, GitHub, Google Workspace, Okta, MongoDB, Wiz, and more, which users can customize further or use as-is. Sola bridges across diverse tech stacks with deep integrations, from cloud platforms and identity providers to CRM and monitoring tools, so you can synthesize cross-domain insights quickly. Built by infosec experts, Sola is secure by design, featuring SOC 2 and ISO 27001 certification, active security oversight, and strict data privacy principles. -
12
Astra API Security Platform
Astra Security
Astra is a powerful API security platform designed to discover, test, and protect every API across your infrastructure. It continuously scans for over 10,000 vulnerabilities, including the OWASP API Top 10, data leaks, and authorization flaws. With Astra, teams can detect Shadow, Zombie, and Orphan APIs, identify sensitive data exposures, and fix vulnerabilities before attackers exploit them. The platform combines automated scanning with manual penetration testing from certified experts to deliver enterprise-grade protection. Seamless integrations with AWS, GCP, Postman, and CI/CD tools make security part of your DevOps workflow. Trusted by over 1,000 engineering teams, Astra empowers businesses to secure their APIs continuously and confidently.Starting Price: $499/month -
13
EagleEye
Cloudnosys
EagleEye is a real-time cloud threat-detection and monitoring solution that continuously oversees an organization’s cloud infrastructure, identifies suspicious events, and triggers automated response workflows. It uses serverless technologies (for example, within AWS Lambda, Amazon EventBridge, and Amazon SQS) to capture and process cloud-trail logs from services such as S3 or IAM, detect policy deviations or unauthorized changes, and then alert teams or invoke corrective actions. The platform works together with Cloudnosys’s broader cloud-security and compliance capabilities to provide visibility, governance, and remedial automation across cloud accounts. EagleEye supports continuous monitoring of cloud resource configurations, identity & access events, network and storage changes, and generates alerts that can be integrated with upstream tools such as Slack, email, or SOAR workflows for rapid incident response. -
14
Cloud IQ
Cloudnosys
CloudIQ is an AI-powered virtual security assistant that integrates across AWS, GCP, and Azure environments to provide continuous cloud security posture management. It delivers automated scanning of cloud configurations, exposures, and compliance gaps; prioritizes actionable insights with contextual risk scoring; visualizes threat paths and over-privileged access across regions and accounts; supports natural-language queries for real-time investigation; and enables remediation workflows through its interactive interface. Designed to act as a 24/7 virtual security expert, CloudIQ connects to cloud accounts, ingests telemetry, surfaces high-impact vulnerabilities, and assists teams in resolving issues faster. It’s built to support CISOs, DevOps, and cloud-security teams with automated prioritization, conversational access to insights, and visual dashboards that reduce alert fatigue and enable measurable improvement of cloud security posture. -
15
Attack Path Analysis
Cloudnosys
Cloudnosys Attack Path maps and analyzes privilege-escalation and lateral-movement routes across cloud environments to reveal how misconfigurations, excessive permissions, and exposed resources could be chained into real-world breaches; it visualizes attack graphs with interactive drilldowns, prioritizes paths by contextual risk scoring (impact × exploitability), and recommends precise, actionable remediation steps to break the highest-risk chains, helping teams close the most dangerous routes first. The solution supports multi-cloud accounts, ingests identity, network, and resource telemetry to reconstruct realistic attack scenarios, simulates exploitation to test mitigation effectiveness, and integrates with existing cloud security workflows to trigger automated or guided fix playbooks, reducing time to detect, investigate, and remediate complex cross-resource threats while lowering alert fatigue. -
16
Defakto
Defakto
Defakto secures every automated interaction by issuing short-lived, verifiable identities to non-human actors such as services, pipelines, AI agents, and machines, eliminating static credentials, API keys, and standing privileges. Their unified non-human identity and access management solution enables discovery of unmanaged identities across cloud, on-premises, and hybrid environments, issuance of dynamic identities at runtime tied to policy, enforcement of least-privilege access, and full audit-ready logging. The product consists of modules; Ledger for continuous discovery and governance of non-human identities; Mint for automated issuance of purpose-bound, ephemeral identities; Ship for secretless CI/CD workflows where hard-coded credentials are removed; Trim for automatic right-sizing of access and removal of over-privileged service accounts; and Mind for securing AI agents and large-language models with the same identity model used for workloads. -
17
Keycard
Keycard
Keycard is an identity-and-access infrastructure platform built for the agent-native era, enabling developers and enterprises to securely connect AI agents, users, services, and APIs with real-time, policy-driven identity controls. It issues dynamic, ephemeral access tokens in place of static secrets and supports federated identity models to unify users, agents, and workloads under a distributed authorization framework. The platform provides drop-in SDKs for popular frameworks so developers can build agent-aware applications without becoming IAM experts. Keycard’s data model includes identity-attested agents, tasks, tools, and resources, allowing logical zones with context-aware permissions and auditability. On the policy side, security teams can define deterministic, task-based rules that enforce who (user/agent) can do what (task) on which resource under which conditions, all with full transparency. -
18
Teleskope
Teleskope
Teleskope is a modern data protection platform designed to automate data security, privacy, and compliance at enterprise scale. It continuously discovers and catalogs data across cloud, SaaS, structured, and unstructured sources, classifying over 150 entity types such as PII, PHI, PCI, and secrets with high precision and high throughput. Once sensitive data is identified, Teleskope enables automated remediation, such as redaction, masking, encryption, deletion, and access correction, while integrating into developer workflows via its API-first model and supporting deployment as SaaS, managed, or self-hosted. The platform also builds prevention capabilities, embedding into SDLC pipelines to stop sensitive data from entering production systems, support safe AI adoption (without using unchecked sensitive data), handle data subject rights requests (DSARs), and map findings to regulatory standards (GDPR, CPRA, PCI-DSS, ISO, NIST, CIS). -
19
Mondoo
Mondoo
Mondoo is a unified security and compliance platform designed to drastically reduce business-critical vulnerabilities by combining full-stack asset visibility, risk prioritization, and agentic remediation. It builds a complete inventory of every asset, cloud, on-premises, SaaS, endpoints, network devices, and developer pipelines, and continuously assesses configurations, exposures, and interdependencies. It then applies business context (such as asset criticality, exploitability, and policy deviation) to score and highlight the most urgent risks. Users can choose guided remediation (pre-tested code snippets and playbooks) or autonomous remediation via orchestration pipelines, with tracking, ticket creation, and verification built in. Mondoo supports ingestion of third-party findings, integrates with DevSecOps toolchains (CI/CD, IaC, container registries), and includes 300 + compliance frameworks and benchmark templates. -
20
Intruder
Intruder
Intruder is an international cyber security company that helps organisations reduce their cyber exposure by providing an effortless vulnerability scanning solution. Intruder’s cloud-based vulnerability scanner discovers security weaknesses across your digital estate. Offering industry-leading security checks, continuous monitoring and an easy-to-use platform, Intruder keeps businesses of all sizes safe from hackers. Receive actionable results prioritised by context. Intruder interprets raw data received from leading scanning engines, so you can focus on the issues which truly matter, such as exposed databases. Intruder's high-quality reports help you sail through customer security questionnaires, and make compliance audits like SOC2, ISO27001, and Cyber Essentials a breeze. -
21
Aviatrix
Aviatrix
For enterprises struggling to secure cloud workloads, Aviatrix® offers a single solution for pervasive cloud security. Where current cybersecurity approaches focus on securing entry points to a trusted space, Aviatrix Cloud Native Security Fabric (CNSF) delivers runtime security and enforcement within the cloud application infrastructure itself – closing gaps between existing solutions and helping organizations regain visibility and control. Aviatrix ensures security, cloud, and networking teams are empowering developer velocity, AI, serverless, and what’s next. -
22
The only real-time, analytics-driven multicloud monitoring solution for all environments (formerly SignalFx). Monitor any environment on a massively scalable streaming architecture. Open, flexible data collection and rapid visualizations of services in seconds. Purpose built for ephemeral and dynamic cloud-native environments at any scale (e.g., Kubernetes, container, serverless). Detect, visualize and resolve issues as soon as they arise. Monitor infrastructure performance in real-time at cloud scale through predictive streaming analytics. Over 200 pre-built integrations for cloud services and out-of-the-box dashboards for rapid visualization of your entire stack. Autodiscover, breakdown, group, and explore clouds, services and systems. Quickly and easily understand how your infrastructure behaves across different services, availability zones, Kubernetes clusters and more.
-
23
ForgeRock
ForgeRock
Radically improve and scale all things identity, governance, and access management with the industry's only full-suite, AI-driven platform. Today we rely on digital access for our work, learning, and personal lives more than at any other time in history. To meet demand and keep up with competitors, it’s imperative to speed digital transformation and provide superior experiences while ensuring the utmost security. At ForgeRock, we help people safely and simply access the connected world by helping organizations significantly improve and scale all things identity, governance, and access management. ForgeRock offers the industry's only full-suite, AI-driven platform purpose-built for all identities and use cases (consumers, workforce, and things). ForgeRock’s comprehensive, yet simple-to-use solutions allow you to grow revenue, manage risks, increase workforce productivity, and reduce costs. -
24
HyTrust
HyTrust
In a multi-cloud world where technology moves at lightning speed and security often plays catchup, organizations face the daunting challenge of eliminating the gaps and resolving the inconsistencies in policy enforcement and adherence to compliance mandates. HyTrust CloudControl provides advanced privileged user access control, policy enforcement, forensic and automated compliance for private clouds. HyTrust DataControl provides powerful data-at-rest encryption and integrated key management for workloads running in any cloud environment. Encrypting workloads helps enterprises to ensure their data is protected. One of the challenges of workload encryption is scaling the management of encryption keys. HyTrust’s mission is to make private, public and hybrid cloud infrastructure more trustworthy for enterprises, service providers and government agencies. HyTrust provides solutions that automate security controls for software-defined computing, networking and storage workloads. -
25
SafeStor
UbiStor
An all-in-one solution for backup and disaster recovery, SafeStor ensures that your files and systems are always safe during an incident and recoverable in minutes, not days or even weeks. The combined power of our BaaS and DRaaS services give you peace of mind that your business is protected across complex and varied environments. Our technology monitors your systems in real-time, distinguishing normal activities from suspicious ones like unauthorized encryption. Shrink recovery times significantly by spinning up a protected system locally, directly from the backup storage on to your existing Hyper-V or VMware host. Protect virtual and physical servers, AWS and Azure workloads, workstations, and O365 data all from the same platform. Eliminate expensive equipment and backup software purchases. With SafeStor, you can protect your systems and data at an affordable, predictable, monthly rate based on your usage. -
26
Qualys TruRisk Platform
Qualys
Qualys TruRisk Platform (formerly Qualys Cloud Platform). The revolutionary architecture that powers Qualys’ IT, security, and compliance cloud apps. Qualys TruRisk Platform gives you a continuous, always-on assessment of your global IT, security, and compliance posture, with 2-second visibility across all your IT assets, wherever they reside. And with automated, built-in threat prioritization, patching and other response capabilities, it’s a complete, end-to-end security solution. On premises, at endpoints, on mobile, in containers or in the cloud, Qualys TruRisk Platform sensors are always on, giving you continuous 2-second visibility of all your IT assets. Remotely deployable, centrally managed and self-updating, the sensors come as physical or virtual appliances, or lightweight agents. Qualys TruRisk Platform provides an end-to-end solution, allowing you to avoid the cost and complexities that come with managing multiple security vendors.Starting Price: $500.00/month -
27
Contrast Assess
Contrast Security
A new kind of security designed for the way software is created. Resolve security issues minutes after installation by integrating security into your toolchain. Because Contrast agents monitor code and report from inside the application, developers can finally find and fix vulnerabilities without requiring security experts. That frees up security teams to focus on providing governance. Contrast Assess deploys an intelligent agent that instruments the application with smart sensors. The code is analyzed in real time from within the application. Instrumentation minimizes the false positives that slow down developers and security teams. Resolve security issues minutes after installation by integrating security into your toolchain. Contrast Assess integrates seamlessly into the software life cycle and into the tool sets that development and operations teams are already using, including native integration with ChatOps, ticketing systems and CI/CD tools, and a RESTful API. -
28
Proficio
Proficio
Proficio’s Managed, Detection and Response (MDR) solution surpasses the capabilities of traditional Managed Security Services Providers (MSSPs). Our MDR service is powered by next-generation cybersecurity technology and our security experts partner with you to become an extension of your team, continuously monitoring and investigating threats from our global networks of security operations centers. Proficio’s advanced approach to threat detection leverages an extensive library of security use cases, MITRE ATT&CK® framework, AI-based threat hunting models, business context modeling, and a threat intelligence platform. Through our global network of Security Operations Centers (SOCs), Proficio experts monitor, investigate and triage suspicious events. We significantly reduce the number of false positives and provide actionable alerts with remediation recommendations. Proficio is a leader in Security Orchestration Automation and Response (SOAR). -
29
A10 Defend DDoS Mitigator
A10 Networks
A10 Defend DDoS Mitigator (formerly Thunder TPS) is a scalable and automated DDoS protection solution powered by advanced machine learning, leading the industry in precision, scalability, and performance. The solution minimizes downtime with multi-vector DDoS mitigation, leveraging FPGA-based acceleration and various clustering techniques to provide protection at scale. Auto policy escalation, intelligent zero-day mitigation, and streamlined SecOps elevates efficacy while lowering TCO. -
30
NETSCOUT Arbor DDoS
NETSCOUT
Since 1999, our DDoS protection and network visibility solutions have been tested and proven in the world's largest, most complex networks. We deliver powerful visibility and traffic intelligence, at internet scale, to help customers not only understand their own environment, but threat actors, their tools, behaviors and campaigns on a global basis. Layered, Automated DDoS Attack Protection: Industry best practices recommend a comprehensive layered, approach, backed by continuous threat intelligence. Stop today’s high volume attacks, which are exceeding 600GB/sec. Stealthy application-layer attacks against existing stateful infrastructure devices, such as firewall, IPS and ADCs. Only a tightly integrated defense can adequately protect you from the full spectrum of DDoS attacks. Organizations face increasing pressure to drive technology transformation while managing risk.
