AWS securityhub documentation change
Summary
Updated references to 'Security Hub' to 'Security Hub CSPM' throughout the document, removed version number from AWS Foundational Security Best Practices standard, and adjusted navigation links.
Security assessment
The changes emphasize Cloud Security Posture Management (CSPM) capabilities, which are security-focused features. However, there is no evidence of addressing a specific vulnerability or security incident. The updates appear to clarify product branding and documentation structure rather than mitigate risks.
Diff
diff --git a/securityhub/latest/userguide/securityhub-auto-enabled-standards.md b/securityhub/latest/userguide/securityhub-auto-enabled-standards.md index 674aace83..a3d2d5d69 100644 --- a//securityhub/latest/userguide/securityhub-auto-enabled-standards.md +++ b//securityhub/latest/userguide/securityhub-auto-enabled-standards.md @@ -3 +3 @@ -[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[User Guide](what-is-securityhub.html) +[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[ User Guide ](what-is-security-hub-adv.html) @@ -7 +7 @@ -If your organization doesn't use central configuration, it uses a configuration type called _local configuration_. With local configuration, AWS Security Hub can automatically enable default security standards for new member accounts when the accounts join your organization. All the controls that apply to these default standards are also enabled automatically. +If your organization doesn't use central configuration, it uses a configuration type called _local configuration_. With local configuration, AWS Security Hub Cloud Security Posture Management (CSPM) can automatically enable default security standards for new member accounts when the accounts join your organization. All the controls that apply to these default standards are also enabled automatically. @@ -9 +9 @@ If your organization doesn't use central configuration, it uses a configuration -Currently, the default security standards are the AWS Foundational Security Best Practices v1.0.0 standard and the Center for Internet Security (CIS) AWS Foundations Benchmark v1.2.0 standard. For information about these standards, see the [Security Hub standards reference](./standards-reference.html). +Currently, the default security standards are the AWS Foundational Security Best Practices standard and the Center for Internet Security (CIS) AWS Foundations Benchmark v1.2.0 standard. For information about these standards, see the [Standards reference for Security Hub CSPM](./standards-reference.html). @@ -11 +11 @@ Currently, the default security standards are the AWS Foundational Security Best -If you prefer to manually enable security standards for new member accounts, you can turn off automatic enablement of the default standards. You can do this only if you integrate with AWS Organizations and use local configuration. If you use central configuration, you can instead create a configuration policy that enables the default standards and associate the policy with the root. All of your organization accounts and OUs then inherit this configuration policy unless they are associated with a different policy or are self-managed. If you don't integrate with AWS Organizations, you can disable a default standard when you initially enable Security Hub or later. To learn how, see [Disabling a standard](./disable-standards.html). +If you prefer to manually enable security standards for new member accounts, you can turn off automatic enablement of the default standards. You can do this only if you integrate with AWS Organizations and use local configuration. If you use central configuration, you can instead create a configuration policy that enables the default standards and associate the policy with the root. All of your organization accounts and OUs then inherit this configuration policy unless they are associated with a different policy or are self-managed. If you don't integrate with AWS Organizations, you can disable a default standard when you initially enable Security Hub CSPM or later. To learn how, see [Disabling a standard](./disable-standards.html). @@ -13 +13 @@ If you prefer to manually enable security standards for new member accounts, you -To turn off automatic enablement of the default standards for new member accounts, you can use the Security Hub console or the Security Hub API. +To turn off automatic enablement of the default standards for new member accounts, you can use the Security Hub CSPM console or the Security Hub CSPM API. @@ -15 +15 @@ To turn off automatic enablement of the default standards for new member account -Security Hub console +Security Hub CSPM console @@ -18 +18 @@ Security Hub console -Follow these steps to turn off automatic enablement of the default standards by using the Security Hub console. +Follow these steps to turn off automatic enablement of the default standards by using the Security Hub CSPM console. @@ -22 +22 @@ Follow these steps to turn off automatic enablement of the default standards by - 1. Open the AWS Security Hub console at [https://console.aws.amazon.com/securityhub/](https://console.aws.amazon.com/securityhub/). + 1. Open the AWS Security Hub Cloud Security Posture Management (CSPM) console at [https://console.aws.amazon.com/securityhub/](https://console.aws.amazon.com/securityhub/). @@ -37 +37 @@ Sign in using the credentials of the administrator account. -Security Hub API +Security Hub CSPM API @@ -40 +40 @@ Security Hub API -To turn off automatic enablement of the default standards programmatically, from the Security Hub administrator account, use the [UpdateOrganizationConfiguration](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_UpdateOrganizationConfiguration.html) operation of the Security Hub API. In your request, specify `NONE` for the `AutoEnableStandards` parameter. +To turn off automatic enablement of the default standards programmatically, from the Security Hub CSPM administrator account, use the [UpdateOrganizationConfiguration](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_UpdateOrganizationConfiguration.html) operation of the Security Hub CSPM API. In your request, specify `NONE` for the `AutoEnableStandards` parameter. @@ -42 +42 @@ To turn off automatic enablement of the default standards programmatically, from -If you're using the AWS CLI, run the [update-organization-configuration](https://docs.aws.amazon.com/cli/latest/reference/securityhub/update-organization-configuration.html) command to turn off automatic enablement of the default standards. For the `auto-enable-standards` parameter, specify `NONE`. For example, the following command automatically enables Security Hub for new member accounts, and turns off automatic enablement of the default standards for the accounts. +If you're using the AWS CLI, run the [update-organization-configuration](https://docs.aws.amazon.com/cli/latest/reference/securityhub/update-organization-configuration.html) command to turn off automatic enablement of the default standards. For the `auto-enable-standards` parameter, specify `NONE`. For example, the following command automatically enables Security Hub CSPM for new member accounts, and turns off automatic enablement of the default standards for the accounts.