Integrate with Amazon SNS

You can send Sophos Cloud Optix alerts to an Amazon SNS (Simple Notification Service) topic you've created in your AWS account.

As part of integration, you need to add the SNS:Publish permission to the the Sophos Cloud Optix read-only IAM role in the AWS account.
Note You must locate the Sophos Cloud Optix read-only IAM role in AWS. Depending on when your AWS environments were added to Sophos Cloud Optix, this may be called Sophos-Optix-role or Avid-Role.

The instructions here tell you how to add that permission by using an AWS managed policy. For other ways to do it, see Set the AmazonSNS permission in AWS.

In your AWS console, do as follows:
  1. Go to your AWS account.
  2. Go to Roles and select the Sophos Cloud Optix read-only IAM role.
  3. Select Attach Policy, search for "AmazonSNSFullAccess" and attach it.
In Sophos Cloud Optix, do as follows:
  1. Go to Settings > Integration.
  2. Click Amazon SNS.
  3. Turn on Enable.
  4. In AWS account, select an account that you’ve added to Sophos Cloud Optix.
  5. Enter the SNS topic ARN (Amazon Resource Name).
  6. In Alert Levels, select the type(s) of alert that you want to send.
  7. Click Save.
Sophos Cloud Optix sends a test message to your SNS topic.