Skip to main content
All CollectionsTemplatesIntermediate
Handle AWS S3 Bucket Allows HTTP Requests on Wiz Alert - Workflow Template
Handle AWS S3 Bucket Allows HTTP Requests on Wiz Alert - Workflow Template

Receive an issue from Wiz on an AWS S3 bucket no being compliant, apply a default AWS S3 bucket policy to remediate.

Updated over 7 months ago

The workflow template "Handle AWS S3 Bucket Allows HTTP Requests on Wiz Alert" is designed for cloud security teams leveraging Wiz to monitor and enforce compliance in AWS environments. Upon receiving a Wiz alert indicating an S3 bucket is not compliant due to allowing HTTP requests, the template guides teams through a structured process: tag details retrieval, notification of the bucket's owner via Slack, application of a standard S3 bucket policy upon approval, and tracking the issue both in Wiz and Jira for follow-up. This ensures sensitive data stays secure and cloud resources adhere to best practices.

Trigger

Wiz

Use Cases

CSPM

Workflow Breakdown

  1. Retrieve details from tags on the bucket

  2. Reach out to the bucket owner or Slack channel, notify them about the issue

  3. Suggest to remediate by applying a standard configuration and bucket policy

  4. Apply if the user approves and place the issue in Wiz to In-Progress

  5. If the user rejects, collect a reason and open a follow-up Jira Ticket

  6. Update remediation details on the Wiz issue id that was provided

Vendors

AWS, Slack, Utils, Wiz, Jira Cloud

Workflow Output

Success/Failure - Jira Ticket

Tips

The default bucket policy should be reviewed for your organization and is defined in the step named \"Workflow Context\

Did this answer your question?