Snowplow's AWS Infrastructure Security Bundle: safeguarding your Behavioral Data Pipeline

The AWS Security Bundle from Snowplow is an enhancement to the Snowplow BDP Enterprise that provides an extra layer of security for implementations on AWS. It includes several features such as VPC peering, allowing customers to integrate their VPC with the Snowplow VPC by choosing a specific CIDR/IP range, and custom tagging, offering up to five tags for AWS resources like VPC and S3 buckets. Customers can also install custom security agents on EC2 servers to meet specific compliance needs using S3 objects, and extend IAM policies for additional permissions required by these agents. The bundle offers control over SSH and HTTP access, permitting the disabling of SSH and non-encrypted HTTP traffic to align with internal security protocols. Additionally, customers can set IAM Permissions Boundary policies to define specific permissions for Snowplow services. This bundle enhances the already private and compliant Snowplow solution by allowing customers to deploy infrastructure in their own cloud environment and manage storage and tracking details effectively.