Posted On: Apr 22, 2020

AWS Security Hub has launched a new security standard: AWS Foundational Security Best Practices v1.0.0. The initial release of this standard consists of 31 fully automated security controls in 12 Regions and 27 controls in AWS GovCloud (West) Region. 7 additional regions will be launched shortly. These security controls detect when AWS accounts and deployed resources do not align with security best practices defined by AWS security experts. This curated set of controls helps improve a customer’s security posture in AWS and covers AWS’s most popular and foundational services. When a deviation from an AWS security best practice is identified, AWS Security Hub issues a detailed and actionable finding to customers. These controls closely align to the Top 10 Security Best Practices outlined by AWS Chief Information Security Office, Stephen Schmidt, at AWS re:Invent 2019. We recommend that you enable AWS Security Hub and this standard in all accounts and Regions where you have activity. To learn more, visit our documentation on the AWS Foundational Security Best Practices standard.

Available globally, AWS Security Hub gives you a comprehensive view of your security posture across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Firewall Manager, and AWS IAM Access Analyzer, as well as from over 40 AWS Partner solutions. You can also continuously monitor your environment using automated security checks based on standards, such as the CIS AWS Foundations Benchmark and the Payment Card Industry Data Security Standard. You can also take action on these findings by investigating findings in Amazon Detective and by using Amazon CloudWatch Event rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), and incident management tools or to custom remediation playbooks.

You can enable your 30-day free trial of AWS Security Hub with a single-click in the AWS Management console. Please see the AWS Regions page for all the regions where AWS Security Hub is available. To learn more about AWS Security Hub capabilities, see the AWS Security Hub documentation, and to start your 30-day free trial see the AWS Security Hub free trial page.