1 Answer
- Newest
- Most votes
- Most comments
0
Hello.
SIR[1] is a new service that helps you prepare for, respond to, and recover from security events, while IDR is designed to help you improve your operations, increase workload resiliency, and accelerate your recovery from critical incidents.
To sum up the above, SIR is used mainly around security events which helps you as an AWS user on managing security events (Prepare, respond, recover) and IDR is to assist operations, resiliency and recovery on incidents which is workload(s) / applications.
References:
[1] https://aws.amazon.com/about-aws/whats-new/2024/12/aws-security-incident-response/
[2] https://aws.amazon.com/premiumsupport/aws-incident-detection-response/
answered a year ago
Relevant content
- asked 4 years ago
- asked 10 months ago
- AWS OFFICIALUpdated 7 months ago
- AWS OFFICIALUpdated 4 years ago
Quick correction here
This is not true and AWS AMS is not required to use IDR. However, it looks like you need to have AWS Enterprise Support. More info can be found at https://docs.aws.amazon.com/IDR/latest/userguide/idr-prod-terms.html