Posted On: Sep 7, 2023

AWS announces the availability of control and finding consolidation capabilities in AWS Security Hub in the AWS GovCloud (US-West and US-East) Regions. The consolidated controls view shows all security controls in one place. You can use it to help identify misconfigurations based on severity and number of failed resources, improve your overall security score, and configure each control across standards. This release also includes a matching set of APIs to obtain, list, and update security controls across standards.

Consolidated control findings allows you to consolidate findings for controls included in more than one standard. Prior to this release, Security Hub generated one finding for every check in each standard it belongs to. Now, when you turn on consolidated control findings, Security Hub will generate a new consolidated finding, across standards, for every check. Activating this feature will help simplify how you triage, investigate, and remediate findings, as you will no longer have multiple copies of findings that refer to the same misconfiguration. If you use a Security Hub organization, consolidated control findings is turned on for members only if the admin has turned it on, to help you maintain consistency.

For more information about how to prepare for the new capabilities, visit Impact of consolidation on ASFF fields and values, and refer to Generating and updating control findings to learn more about turning on consolidated control findings.

You can try Security Hub at no cost for 30 days on the AWS Free Tier after provisioning it via the AWS Management Console, API, or CloudFormation.