Posted On: Nov 4, 2020
AWS Security Hub is now integrated with 3CORESec, cloudtamer.io, Prowler, StackRox, and ThreatModeler. Further, Amazon GuardDuty’s integration with AWS Security Hub is now available in AWS GovCloud (US-East). Lastly, AllCloud is now an AWS Security Hub APN Consulting Partner. This brings the total number of AWS service and AWS Partner Network (APN) Technology Partner integrations available in Security Hub to 60 and the number of APN Consulting Partners with a Security Hub offering to 3. 3CORESec, Prowler, and StackRox send findings to Security Hub. ThreatModeler receives findings from Security Hub. Cloudtamer.io both sends and receives findings to/from Security Hub. To learn more, visit the Integration pages in the Security Hub console and click on the "Configuration" link for the integration to learn more about the integration and how to set it up.
3CORESec’s Network Traffic Analysis helps detect potential security issues in customer networks by processing Amazon Virtual Private Cloud (Amazon VPC) traffic via Amazon VPC’s Traffic Mirroring feature. Cloudtamer.io offers enterprises a cloud governance solution that supports AWS by simplifying account management, enforcing budgets, and aligning resources to compliance policies. Prowler is an open source security tool to perform AWS checks related to security best practices and continuous monitoring. The StackRox Kubernetes Security Platform enables security and DevOps teams to enforce their compliance and security policies across the entire container life cycle. ThreatModeler is an automated threat modeling solution that secures and scales the enterprise software and cloud development life cycle. AllCloud's Next-Generation Landing Zone (NGLZ) consulting offer provides a fully automated enterprise-scale governance and security framework and uses AWS Security Hub to collect and normalize AWS security alerts.
AWS Security Hub is available globally and is designed to give you a comprehensive view of your security posture across your AWS accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Firewall Manager, and AWS IAM Access Analyzer, as well as from over 50 APN solutions. You can also continuously monitor your environment using automated security checks based on standards, such as AWS Foundational Security Best Practices, the CIS AWS Foundations Benchmark, and the Payment Card Industry Data Security Standard. You can also take action on these findings by investigating findings in Amazon Detective, by using Amazon EventBridge rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), and incident management tools, or by using your custom remediation playbooks.