Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn how to revolutionize Security Information and Event Management (SIEM) architecture by decoupling threat detection from data storage using Amazon S3 in this 20-minute conference presentation from AWS re:Invent 2025. Discover the limitations of traditional SIEM systems that tightly couple storage and detection, resulting in high costs, slower query performance, and reduced flexibility. Explore innovative approaches to keep AWS-native logs stored in S3 while centralizing additional telemetry data, including endpoint detection and response (EDR) events, within the same bucket infrastructure. Master techniques for improving incident response readiness, achieving faster query performance at reduced costs, and enabling comprehensive threat hunting across diverse data sources without requiring log migration outside the AWS ecosystem. Understand how this decoupled architecture supports enhanced security operations while maintaining cost efficiency and operational flexibility. This session is presented by Vega, an AWS Partner, providing practical insights for security professionals looking to modernize their SIEM implementations using cloud-native storage solutions.
