Partnership

AWS × Tines

Automate cloud security with AWS and Tines

View ExamplesBook a demo

Automate cloud security
with AWS and Tines

An illustration of a tunnel connecting the sky to the ground

Cloud security is a fast-changing and dynamic environment which results in many teams struggling to know what is serious and what is noise.

Tines, built exclusively on AWS, helps teams quickly remediate known threats while effectively triaging the new. Providing a user friendly interface to build automation Stories, teams are able to quickly create new workflows, utilizing native AWS APIs to create solutions based on their team’s needs. Tines also is packaged with thousands of Action templates to utilize threat detection services outside of the AWS ecosystem.

Tines allows AWS customers to...

Automate

security alerts management

Streamline

incident response

Improve

accuracy and remediation timelines

Use case examples

Example 1

Create and use temporary credentials in AWS using Assume Role

Assume an AWS role, use temporary credentials to execute an AWS API call, and then perform cleanup by deleting the temporary credentials in Tines.

Tools

AWS, Tines

Created by

Kelsey Salman

Import
Example 2

Backup Tines tenant data to AWS S3

Gather tenant data from Tines. Store stories, credentials, records, resources, and templates in an S3 bucket for backup purposes.

Tools

AWS, Tines

Community author

Haley Kidd at GE Vernova

Import
Example 3

Track critical alerts for exposed AWS Keys

From the submitter: This story investigates emails sent by AWS Support to an AWS root account email address in search of critical AWS Keys Exposed alerts. Tines AI is used to parse the email and extract important information, and the story then creates a Jira ticket that is updated every time AWS sends an update.

Tools

AWS

Community author

Jaroslaw Wojciechowski at Roche

Import
Example 4

Use ChatGPT for triaging with internal playbooks

From the submitter: This story allows you to use ChatGPT to provide triage steps to analysts based on internally developed playbooks. This saves analysts from having to open multiple playbooks and having to check if any playbooks have changed.

Tools

AWS, Google

Community author

Matt Houston

Import
Example 5

List EC2 instances in AWS

List & describe all EC2 instances within AWS. The story returns an array of basic information about each EC2 instance.

Tools

AWS

Created by

Michael Tolan

Import
Example 6

Set EC2 Security Groups for an instance

Set EC2 Security Groups for an instance

Tools

AWS

Created by

Michael Tolan

Import
View more examples

Useful Resources

AWS security response with Tines

Learn how to automate response to AWS Security Alerts using AWS Cloudwatch and SNS together with the Tines Security Automation platform.

Leveraging AWS Lambda in Tines

Using AWS Lambda within your automation platform.

How to create a Tines Tunnel with an AWS EC2 instance

Create a Tines Tunnel so you can route traffic from Tines to a private API/network successfully.

Whether it’s EDR, traffic behavior analysis, firewall management, IDS, phishing simulations, or anything else we use, Tines is very easy to plug into everything, get the alerts we want, and have it process them. That takes hours off our work.

Joel Perez-Sanchez
Security Engineer
OpenTable

Tines is very intuitive in pretty much every aspect; the platform is just really easy to use, so it does a really good job at saving time. The time saved pays for itself, in my opinion.

Dylan White
Information Security Engineer
KnowBe4

Automate cloud security
with AWS and Tines