Visualize activity in your AWS environment with Datadog Cloud SIEM Investigator

Datadog has introduced Cloud SIEM Investigator for AWS environments, with support for other major cloud providers coming soon. The tool leverages AWS CloudTrail logs to help teams visualize activity associated with AWS entities such as IAM users, roles, resources, and more. It provides a centralized view of the who, what, when, and how behind changes in cloud environments, enabling DevOps and security teams to investigate issues effectively. The Investigator is integrated with both Log Explorer and Security Signals, allowing disparate teams to work together on identifying the source of flagged events or logs. This shared context improves collaboration on investigations and helps identify the root cause of changes faster.