Posted On: Feb 24, 2023

AWS Security Hub has released 7 new controls for its AWS Foundational Security Best Practice standard (FSBP) to enhance your cloud security posture management (CSPM). These controls conduct fully-automatic checks against security best practices for Amazon ElastiCache. If you have Security Hub set to automatically turn on new controls and are already using AWS Foundational Security Best Practices, these new controls will run without having to take any additional action.

With this release, Security Hub now supports 244 security controls to automatically check your security posture in AWS.

The new controls that we launched are:

  • [ElastiCache.1] ElastiCache Redis clusters should have automatic backup enabled
  • [ElastiCache.2] ElastiCache for Redis cache clusters should have auto minor version upgrades enabled
  • [ElastiCache.3] ElastiCache replication groups should have automatic failover enabled
  • [ElastiCache.4] ElastiCache replication groups should have encryption-at-rest enabled
  • [ElastiCache.5] ElastiCache replication groups should have encryption-in-transit enabled
  • [ElastiCache.6] ElastiCache replication groups of earlier Redis versions should have Redis AUTH enabled
  • [ElastiCache.7] ElastiCache clusters should not use the default subnet group

You can begin your 30-day free trial of Security Hub with a single action in the AWS Management console. Please see the AWS Regions page for all the regions where Security Hub is available. To learn more about Security Hub capabilities, see the Security Hub documentation, and to start your 30-day free trial, see the Security Hub free trial page.

To receive notifications about new Security Hub features and controls, subscribe to the Security Hub SNS topic in your preferred Region.