AWS Security ChangesHomeSearch

AWS securityhub documentation change

Service: securityhub · 2025-06-19 · Documentation low

File: securityhub/latest/userguide/securityhub-findings-viewing.md

Summary

Updated documentation to reflect rebranding from 'Security Hub' to 'Security Hub CSPM' (Cloud Security Posture Management) throughout the text, including console references, API names, and documentation links. Added CSPM terminology to emphasize cloud security posture management context.

Security assessment

The changes primarily involve branding/naming updates rather than addressing specific vulnerabilities. While CSPM relates to security posture management, there's no evidence of patching vulnerabilities or responding to security incidents. The updates clarify product scope but don't introduce new security controls or mitigate documented risks.

Diff

diff --git a/securityhub/latest/userguide/securityhub-findings-viewing.md b/securityhub/latest/userguide/securityhub-findings-viewing.md
index 271075754..6a00c73a5 100644
--- a//securityhub/latest/userguide/securityhub-findings-viewing.md
+++ b//securityhub/latest/userguide/securityhub-findings-viewing.md
@@ -3 +3 @@
-[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[User Guide](what-is-securityhub.html)
+[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[ User Guide ](what-is-security-hub-adv.html)
@@ -7 +7 @@ Instructions for reviewing finding details and history
-# Reviewing finding details and finding history in Security Hub
+# Reviewing finding details and history in Security Hub CSPM
@@ -9 +9 @@ Instructions for reviewing finding details and history
-In AWS Security Hub, a finding is an observable record of a security check or security-related detection. Security Hub generates a finding when it completes a security check of a control and when it ingests a finding from an integrated AWS service or third-party product. Each finding includes a history of changes and other details, such as a severity rating and information about the affected resources.
+In AWS Security Hub Cloud Security Posture Management (CSPM), a finding is an observable record of a security check or security-related detection. Security Hub CSPM generates a finding when it completes a security check of a control and when it ingests a finding from an integrated AWS service or third-party product. Each finding includes a history of changes and other details, such as a severity rating and information about the affected resources.
@@ -11 +11 @@ In AWS Security Hub, a finding is an observable record of a security check or se
-You can review finding history and other finding details on the Security Hub console and programmatically through the Security Hub API and AWS CLI.
+You can review finding history and other finding details on the Security Hub CSPM console and programmatically through the Security Hub CSPM API and AWS CLI.
@@ -13 +13 @@ You can review finding history and other finding details on the Security Hub con
-To help you streamline your analysis, the Security Hub console opens a finding panel when you select a specific finding. The panel includes different menus and tabs for viewing different finding details.
+To help you streamline your analysis, the Security Hub CSPM console opens a finding panel when you select a specific finding. The panel includes different menus and tabs for viewing different finding details.
@@ -28 +28 @@ From this menu, you can investigate a finding in Amazon Detective. Detective ext
-This tab provides a summary of the finding. For example, you can see when the finding was created and last updated, in which account it exists, and the source of the finding. For control findings, you can also see the name of the associated AWS Config rule and a link to remediation instructions in the Security Hub documentation.
+This tab provides a summary of the finding. For example, you can see when the finding was created and last updated, in which account it exists, and the source of the finding. For control findings, you can also see the name of the associated AWS Config rule and a link to remediation instructions in the Security Hub CSPM documentation.
@@ -32 +32 @@ On the **Resources** snapshot within the **Overview** tab, you can get a brief o
-The **Compliance** row expands to show more details. For example, for controls that include parameters, you can see the current parameter values that Security Hub uses when conducting security checks.
+The **Compliance** row expands to show more details. For example, for controls that include parameters, you can see the current parameter values that Security Hub CSPM uses when conducting security checks.
@@ -41 +41 @@ The **Details** row shows resource-specific details about the finding by display
-The **Tags** row shows tag key and value information for the resources involved in a finding. Resources that are [supported by the GetResources operation](https://docs.aws.amazon.com/resourcegroupstagging/latest/APIReference/supported-services.html) of the AWS Resource Groups Tagging API can be tagged. Security Hub calls this operation through the [service-linked role](./using-service-linked-roles.html) when processing new or updated findings and retrieves the resource tags if the AWS Security Finding Format (ASFF) `Resource.Id` field is populated with the AWS resource ARN. Security Hub ignores invalid resource IDs. For more information about the inclusion of resource tags in findings, see [Tags](./asff-resources-attributes.html#asff-resources-tags).
+The **Tags** row shows tag key and value information for the resources involved in a finding. Resources that are [supported by the GetResources operation](https://docs.aws.amazon.com/resourcegroupstagging/latest/APIReference/supported-services.html) of the AWS Resource Groups Tagging API can be tagged. Security Hub CSPM calls this operation through the [service-linked role](./using-service-linked-roles.html) when processing new or updated findings and retrieves the resource tags if the AWS Security Finding Format (ASFF) `Resource.Id` field is populated with the AWS resource ARN. Security Hub CSPM ignores invalid resource IDs. For more information about the inclusion of resource tags in findings, see [Tags](./asff-resources-attributes.html#asff-resources-tags).
@@ -46 +46 @@ The **Tags** row shows tag key and value information for the resources involved
-This tab tracks the history of a finding for the past 90 days. Finding history is available for active and archived findings. It provides an immutable trail of changes made to a finding over time, including what AWS Security Finding Format (ASFF) field changed, when the change occurred, and by which user. Each page on the tab displays up to 20 changes. More recent changes are displayed first. If you're signed in to a Security Hub administrator account, the finding history shown is for the administrator account and all member accounts.
+This tab tracks the history of a finding for the past 90 days. Finding history is available for active and archived findings. It provides an immutable trail of changes made to a finding over time, including what AWS Security Finding Format (ASFF) field changed, when the change occurred, and by which user. Each page on the tab displays up to 20 changes. More recent changes are displayed first. If you're signed in to a Security Hub CSPM administrator account, the finding history shown is for the administrator account and all member accounts.
@@ -48 +48 @@ This tab tracks the history of a finding for the past 90 days. Finding history i
-Finding history includes changes that a user made manually or automatically through [Security Hub automation rules](./automation-rules.html). Finding history doesn't include changes to top-level timestamp fields, such as the `CreatedAt` and `UpdatedAt` fields.
+Finding history includes changes that a user made manually or automatically through [Security Hub CSPM automation rules](./automation-rules.html). Finding history doesn't include changes to top-level timestamp fields, such as the `CreatedAt` and `UpdatedAt` fields.
@@ -66 +66 @@ Review the following section to understand how to access these details for a fin
-Choose your preferred method, and follow the steps to view finding details in Security Hub.
+Choose your preferred method, and follow the steps to view finding details in Security Hub CSPM.
@@ -68 +68 @@ Choose your preferred method, and follow the steps to view finding details in Se
-If you enable cross-Region aggregation and sign in to the aggregation Region, finding data includes data from the aggregation Region and linked Regions. In other Regions, finding data is specific to that Region only. For more information about cross-Region aggregation, see [Understanding cross-Region aggregation in Security Hub](./finding-aggregation.html).
+If you enable cross-Region aggregation and sign in to the aggregation Region, finding data includes data from the aggregation Region and linked Regions. In other Regions, finding data is specific to that Region only. For more information about cross-Region aggregation, see [Understanding cross-Region aggregation in Security Hub CSPM](./finding-aggregation.html).
@@ -70 +70 @@ If you enable cross-Region aggregation and sign in to the aggregation Region, fi
-Security Hub console
+Security Hub CSPM console
@@ -75 +75 @@ Security Hub console
-  1. Open the AWS Security Hub console at [https://console.aws.amazon.com/securityhub/](https://console.aws.amazon.com/securityhub/).
+  1. Open the AWS Security Hub Cloud Security Posture Management (CSPM) console at [https://console.aws.amazon.com/securityhub/](https://console.aws.amazon.com/securityhub/).
@@ -79 +79 @@ Security Hub console
-     * In the Security Hub navigation pane, choose **Findings**. Add search filters as necessary to narrow down the finding list.
+     * In the Security Hub CSPM navigation pane, choose **Findings**. Add search filters as necessary to narrow down the finding list.
@@ -81 +81 @@ Security Hub console
-     * In the Security Hub navigation pane, choose **Insights**. Choose an insight. Then on the results list, choose an insight result.
+     * In the Security Hub CSPM navigation pane, choose **Insights**. Choose an insight. Then on the results list, choose an insight result.
@@ -83 +83 @@ Security Hub console
-     * In the Security Hub navigation pane, choose **Integrations**. Choose **See findings** for an integration.
+     * In the Security Hub CSPM navigation pane, choose **Integrations**. Choose **See findings** for an integration.
@@ -85 +85 @@ Security Hub console
-     * In the Security Hub navigation pane, choose **Controls**.
+     * In the Security Hub CSPM navigation pane, choose **Controls**.
@@ -104 +104 @@ If you integrate with AWS Organizations and the account you're signed in to is a
-Security Hub API
+Security Hub CSPM API
@@ -109 +109 @@ Security Hub API
-Use the [GetFindings](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_GetFindings.html) operation of the Security Hub API, or if you're using the AWS CLI, run the [get-findings](https://docs.aws.amazon.com/cli/latest/reference/securityhub/get-findings.html) command.
+Use the [GetFindings](https://docs.aws.amazon.com/securityhub/1.0/APIReference/API_GetFindings.html) operation of the Security Hub CSPM API, or if you're using the AWS CLI, run the [get-findings](https://docs.aws.amazon.com/cli/latest/reference/securityhub/get-findings.html) command.
@@ -154 +154 @@ The following cmdlet retrieves the findings that match the provided filters
-When you filter findings by `CompanyName` or `ProductName`, Security Hub uses the values that are part of the `ProductFields` ASFF object. Security Hub doesn't use the top-level `CompanyName` and `ProductName` fields.
+When you filter findings by `CompanyName` or `ProductName`, Security Hub CSPM uses the values that are part of the `ProductFields` ASFF object. Security Hub CSPM doesn't use the top-level `CompanyName` and `ProductName` fields.