Amazon Security Lake · Capability

Amazon Security Lake Security Data Lake

Unified capability for managing a centralized security data lake including data lake configuration, log source ingestion, and subscriber access management. Used by Security Data Engineers and CISO teams.

Run with Naftiko Amazon Security LakeSecurityData LakeSIEMOCSF

What You Can Do

GET

List data lakes — List all security data lake configurations

/v1/data-lakes

POST

Create data lake — Create a new security data lake

/v1/data-lakes

GET

List log sources — List all configured log sources

/v1/log-sources

POST

Add aws log source — Add a native AWS log source

/v1/log-sources

GET

List subscribers — List all data lake subscribers

/v1/subscribers

POST

Create subscriber — Create a new subscriber for data access

/v1/subscribers

MCP Tools

list-data-lakes

List all Amazon Security Lake data lake configurations

read-only idempotent

create-data-lake

Create a new Amazon Security Lake data lake

get-data-lake-sources

Get data lake source status across accounts and regions

read-only idempotent

list-log-sources

List all log sources configured in Security Lake

read-only idempotent

add-aws-log-source

Enable a native AWS log source in Security Lake

add-custom-log-source

Add a custom third-party log source to Security Lake

list-subscribers

List all Security Lake data subscribers

read-only idempotent

create-subscriber

Create a subscriber for Security Lake data access

get-subscriber

Get details about a specific Security Lake subscriber

read-only idempotent

delete-subscriber

Delete a Security Lake subscriber

idempotent

APIs Used

amazon-security-lake