Posted On: Apr 20, 2022

AWS Security Hub has released support for cross-Region security scores and compliance statuses to enable a more complete view of your security posture across all of your accounts and Regions. Last year, Security Hub added support for cross-Region aggregation of findings. This release extends Security Hub's capabilities to now also support cross-Region security scores and compliance statuses, if you have set up an aggregation Region. The security scores for each standard and compliance statuses for each control in your aggregation Region will reflect a composite view across your linked Regions. Your security scores and compliance statuses in your administrator account and in your aggregation Region will reflect a composite view across all of your accounts and Regions.

To ensure that you can view your cross-Region security scores and compliance status, you should add the following permissions to your IAM policies:

  • ListSecurityControlDefinitions
  • BatchGetStandardsControlAssociations
  • BatchUpdateStandardsControlAssociations

To learn more, visit our cross-Region documentation here and review this blog on cross-Region best practices.

Security Hub is available globally and is designed to give you a comprehensive view of your security posture across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, including Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Firewall Manager, AWS Systems Manager Patch Manager, AWS Config, AWS Health, AWS IAM Access Analyzer, as well as from over 60 AWS Partner Network (APN) solutions. You can also continuously monitor your environment using automated security checks based on standards, such as AWS Foundational Security Best Practices, the CIS AWS Foundations Benchmark, and the Payment Card Industry Data Security Standard. In addition, you can take action on these findings by investigating findings in Amazon Detective or AWS Systems Manager OpsCenter or by sending them to AWS Audit Manager or AWS Chatbot. You can also use Amazon EventBridge rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), response and remediation workflows, and incident management tools.

You can start your 30-day free trial of Security Hub with a single click in the AWS Management Console. To learn more about Security Hub capabilities, see the Security Hub documentation, and to start your 30-day free trial see the Security Hub free trial page.