Deep Security
Deep Security is one of the security solutions offered by Trend Micro and also has a pay per use instance available in AWS Marketplace. There are six major features that are available as a part of the offering:
- Firewall
- Intrusion Prevention Systems
- Anti-malware
- Log inspection
- Application control
- File integrity monitoring
Whenever you purchase it from AWS Marketplace, it generally comes with all features enabled; however, when you go with the offline pricing, the costing is based on the number of servers the agent is going to be installed on plus the modules (features) that you want to subscribe to.
As a part of compliance and security, IPS, anti-malware, and application control are the three modules that can be looked into, as the file integrity monitoring and log inspection can easily be used as a part of the open source OSSEC offering. However, if budget is not a big constraint for your organization, then you may as well decide to use all modules as you won't have to configure OSSEC and its associated rules.
This is what the Trend Micro Deep Security dashboard looks like:
One of the good features that I liked is its integration with AWS. Thus, we can associate an instance role or AWS access and secret keys, and Deep Security will scan across your environment and give you a good status on how many instances are protected with an agent and how many of them are still unmanaged.