Posted On: Dec 18, 2019
AWS Security Hub now integrates with AWS Firewall Manager. AWS Firewall Manager is a security management service which allows you to centrally configure and manage AWS WAF, AWS Shield Advanced, and Amazon VPC Security Group rules across your accounts and applications in AWS Organizations. AWS Firewall Manager’s integration with Security Hub will send four types of findings to Security Hub: (1) resources that are not properly protected by WAF rules; (2) resources that are not properly protected by Shield Advanced; (3) Shield Advanced findings that indicate a Distributed Denial of Service attack is underway; and (4) security groups that are being used incorrectly. AWS Security Hub will automatically enable this integration if you are already using Firewall Manager, and you will begin receiving findings from Firewall Manager without any action needed on your end.
Available globally, AWS Security Hub gives you a comprehensive view of your high priority security alerts and compliance status across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, and Amazon Macie, as well as from AWS Partner solutions. You can also continuously monitor your environment using automated compliance checks based on the AWS best practices and industry standards, such as the CIS AWS Foundations Benchmark. You can also take action on these security and compliance findings by using CloudWatch Event rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), and incident management tools or to custom remediation playbooks.
You can enable your 30-day free trial of AWS Security Hub with a single-click in the AWS Management console. Please see the AWS Regions page for all the regions where Security Hub and AWS Firewall Manager is available. To learn more about AWS Security Hub capabilities, see the AWS Security Hub documentation, and to start your 30-day free trial see the AWS Security Hub free trial page. To learn more about AWS Firewall Manager, see the product page or documentation.