Guard is a serverless application that scans Amazon Web Services (AWS) accounts to assess security compliance with Amazon’s Data Protection Policy. It leverages custom scan rules built with AWS Security services to look for security gaps, and then returns a findings report with clear remediation recommendations after 24 hours.
“Guard is a fantastic compliance tool for the Amazon Selling Partner Audit. It only takes a few minutes to set up and connect to your AWS infrastructure. Before we started using Guard, we were paying for several third party tools to stay in compliance with Amazon policy. Now, Guard ensures that we're in compliance with a fraction of the effort and cost.”
How does Guard work?
Guard democratizes security controls through fast and continuous assessments that evaluate Developers' security configurations against Amazon’s Data Protection Policy (DPP) requirements and industry best practices, and generates diagnosis to help user with decisions making on suitable security solutions. It identifies issues that could potentially lead to data incidents enabling Developers to stay ahead in mitigating risks.
Guard is designed to simplify complex ambiguous concepts into actionable insights and make it accessible to Developers of all sizes so that they can focus on growing their business.
Click ‘Develop Apps’ under ‘Partner Network’ from the homepage menu, where you will see a line about Guard with a ‘New!’ icon. Click 'Get Started', and you will see Guard’s product page in Seller Central.
Review the Guard Implementation Guide
Visit SP-API’s documentation site, which hosts Guard’s Implementation Guide, support resources, FAQ, and more.
Launch the AWS CloudFormation stack
From the SP-API documentation site's implementtion guide, launch Guard’s CloudFormation stack.