Amazon Inspector findings to SNS Topic which triggers a subscribed AWS Lambda. The Lambda function parses the findings and takes remediation action on the associated target EC2 instance.
To deploy this security control, upload the security control Lambda ZIP file to a location in Amazon S3. This location must be in the same region you intend to deploy the control.
Launch the provided AWS CloudFormation template using the AWS Console and provide the following information:
| Parameter | Description |
|---|---|
| S3 Bucket | The S3 bucket name you uploaded the Lambda ZIP to |
| S3 Key | The S3 location of the Lambda ZIP. No leading slashes. (ex. Lambda.zip or controls/lambda.zip. ) |
| Notification Email | An email address where you would like violation notifications sent |