Posted On: Jun 4, 2021
AWS Security Hub has released 16 new controls for its Foundational Security Best Practice standard to enhance customers’ cloud security posture monitoring. These controls conduct fully automatic checks against security best practices for Amazon API Gateway (APIGateway.2, APIGateway.3), AWS Elastic Beanstalk (ElasticBeanstalk.1, ElasticBeanstalk.2), Amazon RDS (RDS.12, RDS.13, RDS.14), Amazon EC2 (EC2.15, EC2.16), AWS CloudTrail (CloudTrail.4, CloudTrail.5), Amazon Redshift (Redshift.7), AWS Lambda (Lambda.4), AWS Secrets Manager (SecretsManager.3, SecretsManager.4), and AWS Web Application Firewall (WAF.1). If you have Security Hub set to automatically enable new controls and are already using AWS Foundational Security Best Practices, these controls are enabled by default. Security Hub now supports 131 security controls to automatically check your security posture in AWS.
AWS Security Hub is available globally and is designed to give you a comprehensive view of your security posture across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, including Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Firewall Manager, AWS Systems Manager Patch Manager, AWS Chatbot, AWS Config, AWS IAM Access Analyzer, as well as from over 50 AWS Partner Network (APN) solutions. You can also continuously monitor your environment using automated security checks based on standards, such as AWS Foundational Security Best Practices, the CIS AWS Foundations Benchmark, and the Payment Card Industry Data Security Standard. In addition, you can take action on these findings by investigating findings in Amazon Detective or sending them to AWS Audit Manager. You can also use Amazon EventBridge rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), response and remediation workflows, and incident management tools.