AWS
Security Posture
A 0–100 score for the account's security configuration, broken down by rule category.
Live preview — demo data
What this pane shows
A scorecard view: a rule engine runs ~30 checks across IAM (MFA, key age, password policy), Network Exposure (open ports, public databases), Data Protection (encryption-at-rest, S3 public access), Logging & Audit (CloudTrail, GuardDuty) and Compliance (Multi-AZ, backups, IMDSv2). Each failing rule lists affected resources and a remediation hint.
Key use cases
- Quick "how secure is this account?" answer for an exec or auditor.
- Prioritise security work by rule severity and number of affected resources.
- Track the score over time as findings are remediated.
- Pre-flight a new account or workload against the same rule set as production.
How to embed
lp.js is the single-entry loader: it injects the shared LightPane runtime
(and sd-embed.css) once per page. Add this pane's own stylesheet and script;
the pane mounts itself wherever the matching <div> is in the DOM.
<!-- In <head> — this pane's stylesheet -->
<link rel="stylesheet" href="https://lightpane.io/_pane-tests/aws/security-posture/security-posture.css">
<!-- Your access key (inline, or set window.lpEmbed.accessKey from your own JS) -->
<script>window.lpEmbed = { accessKey: "<your-access-key>" };</script>
<!-- Where the pane should appear -->
<div class="lp-security-posture-panel" data-lp-account="<your-account-alias>"></div>
<!-- Before </body> — shared loader + this pane's script -->
<script src="https://lightpane.io/embed/lp.js"></script>
<script src="https://lightpane.io/_pane-tests/aws/security-posture/security-posture.js" defer></script>
Tier
Available on Builder and above.
Build notes
Mock-only at the moment — live-wiring tracked in the roadmap.