What types of AWS policies does the new recommendation feature analyze?

The feature analyzes both built-in AWS policies and user-defined policies, making recommendations based on how the policies are currently being used to help reduce permissions to only what's necessary.

How do the new automation policies handle guest users?

The new fine-grained remediations automatically eliminate direct stale guest access and stale guest membership, allowing collaboration when necessary while revoking access when it's no longer relevant.

Varonis January 2025: AWS Policy Recommendations & Guest Access Automation

Name: Varonis January 2025: AWS Policy Recommendations & Guest Access Automation
Uploaded: 2026-04-12T14:21:58-04:00
Duration: 2 min 38 s
Description: TL;DR New AWS over-permissive policy recommendations automatically analyze built-in and user-defined policies to suggest rightsizing based on actual usage patterns. Expanded automation policies now include fine-grained remediations for automatically el...

Varonis

04/12/2026

0 (0%)

Report Like Favorite

TL;DR

New AWS over-permissive policy recommendations automatically analyze built-in and user-defined policies to suggest rightsizing based on actual usage patterns.
Expanded automation policies now include fine-grained remediations for automatically eliminating stale guest access and membership for non-org users.
New learning and enablement courses feature hands-on training labs for practical experience in controlled environments.

Summary

This January 2025 product update from Varonis introduces three key enhancements focused on cloud security and access management. The headline feature is new AWS over-permissive policy recommendations, which automatically analyze both built-in and user-defined AWS policies to suggest rightsizing configurations based on actual usage patterns. This capability addresses the complexity of AWS policy management by identifying where permissions exceed what's necessary for functionality. The update also expands Varonis automation policies with fine-grained remediations specifically targeting non-organization users, enabling automatic revocation of stale guest access and membership. This helps organizations maintain collaboration capabilities while ensuring access is removed when no longer relevant. Additionally, Varonis has released new learning and enablement courses with hands-on training labs, allowing customers to gain practical experience in controlled environments. The update closes with an invitation to an upcoming March webinar covering quarterly updates and 2025 roadmap plans.

Chapters

0:00 - Introduction
0:22 - AWS Policy Recommendations
1:01 - Guest Access Automation
1:29 - Training and Enablement

Key Quotes

0:22 "AWS policies can be overwhelming to analyze and understand."
0:27 "With Varonis' new AWS over-permissive policy recommendations, we can help take the guesswork out of rightsizing access."
0:50 "This can help reduce the scope of the rights to just what's necessary without sacrificing functionality."

Categories:

» Webinar Library » Varonis
» Data Protection » Backup & Recovery
» Cybersecurity » Identity & Access Management (IAM)
» Cybersecurity » Cloud Security
» Data Protection

Tags:

Show more Show less

TL;DR

Summary

Chapters

Key Quotes

Harnessing AI Effectively: Ensuring Security for Small Teams in Action

Delving into Our Latest Investigations and the 2026 Threat Landscape

Deciding Between Purchasing and Developing Solutions

Assessing Data Classification: Weighing the True Costs of Building vs. Buying

Prioritizing Solutions: Transforming Data Risk into Actionable Steps