Posted On: Nov 11, 2021
AWS Security Hub has released three new controls for its Foundational Security Best Practice standard (FSBP) to enhance customers’ Cloud Security Posture Management (CSPM). These controls conduct fully-automatic checks against security best practices for Elastic Load Balancing and AWS Systems Manager. If you have Security Hub set to automatically enable new controls and are already using AWS Foundational Security Best Practices, these controls are enabled by default. Security Hub now supports 162 security controls to automatically check your security posture in AWS.
The three controls that we have launched are:
Security Hub also added two integration partners and one consulting partner, which brings Security Hub up to 73 total partners. The new integration partners include HackerOne and Logz.io. HackerOne sends vulnerability findings to Security Hub and is a platform that connects organizations with a global ethical hacker community to identify and fix vulnerabilities before they can be exploited. Logz.io Cloud SIEM receives findings from Security Hub and enables SecOps teams to quickly identify and investigate threats across the entire attack surface. The new consulting partner is DFX5, and it provides AWS security consultancy and managed security services. For Security Hub customers, DFX5 has developed customized automated response and remediation solution and customized reporting capabilities.
AWS Security Hub is available globally and is designed to give you a comprehensive view of your security posture across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, including Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Firewall Manager, AWS Systems Manager Patch Manager, AWS Config, AWS IAM Access Analyzer, as well as from over 60 AWS Partner Network (APN) solutions. You can also continuously monitor your environment using automated security checks based on standards, such as AWS Foundational Security Best Practices, the CIS AWS Foundations Benchmark, and the Payment Card Industry Data Security Standard. In addition, you can take action on these findings by investigating findings in Amazon Detective or AWS Systems Manager OpsCenter or by sending them to AWS Audit Manager or AWS Chatbot. You can also use Amazon EventBridge rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), response and remediation workflows, and incident management tools.