The workflow template "Handle AWS S3 Bucket Allows HTTP Requests on Wiz Alert" is designed for cloud security teams leveraging Wiz to monitor and enforce compliance in AWS environments. Upon receiving a Wiz alert indicating an S3 bucket is not compliant due to allowing HTTP requests, the template guides teams through a structured process: tag details retrieval, notification of the bucket's owner via Slack, application of a standard S3 bucket policy upon approval, and tracking the issue both in Wiz and Jira for follow-up. This ensures sensitive data stays secure and cloud resources adhere to best practices.
Trigger
Wiz
Use Cases
CSPM
Workflow Breakdown
Retrieve details from tags on the bucket
Reach out to the bucket owner or Slack channel, notify them about the issue
Suggest to remediate by applying a standard configuration and bucket policy
Apply if the user approves and place the issue in Wiz to In-Progress
If the user rejects, collect a reason and open a follow-up Jira Ticket
Update remediation details on the Wiz issue id that was provided
Vendors
AWS, Slack, Utils, Wiz, Jira Cloud
Workflow Output
Success/Failure - Jira Ticket
Tips
The default bucket policy should be reviewed for your organization and is defined in the step named \"Workflow Context\