Posted On: May 13, 2024
Today, AWS Security Hub announces support for version 3.0 of the Center for Internet Security (CIS) AWS Foundations Benchmark. The CIS v3.0 standard contains 37 security controls, including 7 new controls which are unique to this standard. Security Hub has satisfied the requirements of the CIS Security Software Certification and has been awarded the certification for levels 1 and 2 of version 3.0 of the CIS AWS Foundations Benchmark.
To quickly enable the new standard across your AWS environment, you should use central configuration. This will allow you to enable the standard in some or all of your organization accounts and across all of AWS Regions that are linked to Security Hub with a single action. By using central configuration, you are also able to carry-over the enablement setting of individual controls from previous versions of the CIS standard to this newer version. Alternatively, if you are not using central configuration, you may enable the standard and configure the controls in it on an account-by-account and Region-by-Region basis. To learn more about using central configuration, visit the AWS security blog.
To get started with Security Hub, consult the following list of resources:
- Learn more about Security Hub capabilities and features, and the Regions in which they are available, in the AWS Security Hub user guide
- Subscribe to the Security Hub SNS topic to receive notifications about new Security Hub features and controls
- Try Security Hub at no cost for 30 days