Posted On: Oct 7, 2020

AWS Security Hub has improved how we display details for security standards, which are collections of automated security checks based on industry and regulatory frameworks like the Center for Internet Security's (CIS) AWS Foundational Benchmarks, the Payment Card Industry Data Security Standard (PCI DSS), and AWS's own Foundational Security Best Practices. We have implemented a new tabular view that makes it easier to understand your security posture relative to the security checks you have enabled in Security Hub. We have removed the legacy cards view for standards, so you will now see a visual summary of all your security checks and a count of how many checks have passed or failed. The controls table will show you at a glance the count of failed, unknown, passed, and disabled controls in the standard. Because the controls are grouped by status, you can more easily focus on failed controls. You can filter and search the controls to pinpoint specific resource types and can also sort using any of the table columns. You can now see the security score for a standard in the standard's page alongside its controls.

For a short demo of the new AWS Security Hub user interface for standards and controls please view this video.  

Available globally, AWS Security Hub is designed to give you a comprehensive view of your security posture across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Firewall Manager, AWS System Manager Patch Manager, AWS IAM Access Analyzer, and from 48 AWS Partner solutions. You can also continuously monitor your environment using automated security checks based on standards, such as AWS Foundational Security Best Practices, the CIS AWS Foundations Benchmark, and the Payment Card Industry Data Security Standard. You can also take action on these findings by investigating findings in Amazon Detective and by using Amazon CloudWatch Event rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), and incident management tools or to custom remediation playbooks.  

You can enable your 30-day free trial of AWS Security Hub with a single-click in the AWS Management console. Please see the AWS Regions page for all the regions where AWS Security Hub is available. To learn more about AWS Security Hub capabilities, see the AWS Security Hub documentation, and to start your 30-day free trial see the AWS Security Hub free trial page.