AWS securityhub documentation change
Summary
Updated all references from 'Security Hub' to 'Security Hub CSPM (Cloud Security Posture Management)' throughout the documentation, including integration descriptions, partner processes, and console references.
Security assessment
The changes rebrand standard Security Hub references to emphasize Cloud Security Posture Management (CSPM) capabilities, which is a security-focused feature. However, there is no evidence of addressing a specific security vulnerability or incident - this appears to be documentation alignment with product naming/positioning rather than patching a security issue.
Diff
diff --git a/securityhub/latest/userguide/securityhub-partner-providers.md b/securityhub/latest/userguide/securityhub-partner-providers.md index 95f556385..2fe44f794 100644 --- a//securityhub/latest/userguide/securityhub-partner-providers.md +++ b//securityhub/latest/userguide/securityhub-partner-providers.md @@ -3 +3 @@ -[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[User Guide](what-is-securityhub.html) +[Documentation](/index.html)[AWS Security Hub](/securityhub/index.html)[ User Guide ](what-is-security-hub-adv.html) @@ -5 +5 @@ -Overview of third-party integrations with Security HubThird-party integrations that send findings to Security HubThird-party integrations that receive findings from Security HubThird-party integrations that send findings to and receive findings from Security Hub +Overview of third-party integrations with Security Hub CSPMThird-party integrations that send findings to Security Hub CSPMThird-party integrations that receive findings from Security Hub CSPMThird-party integrations that send findings to and receive findings from Security Hub CSPM @@ -7 +7 @@ Overview of third-party integrations with Security HubThird-party integrations t -# Third-party product integrations with Security Hub +# Third-party product integrations with Security Hub CSPM @@ -9 +9 @@ Overview of third-party integrations with Security HubThird-party integrations t -AWS Security Hub integrates with multiple third-party partner products. An integration can perform one or more of the following actions: +AWS Security Hub Cloud Security Posture Management (CSPM) integrates with multiple third-party partner products. An integration can perform one or more of the following actions: @@ -11 +11 @@ AWS Security Hub integrates with multiple third-party partner products. An integ - * Send findings that it generates to Security Hub + * Send findings that it generates to Security Hub CSPM @@ -13 +13 @@ AWS Security Hub integrates with multiple third-party partner products. An integ - * Receive findings from Security Hub + * Receive findings from Security Hub CSPM @@ -15 +15 @@ AWS Security Hub integrates with multiple third-party partner products. An integ - * Update findings in Security Hub + * Update findings in Security Hub CSPM @@ -20 +20 @@ AWS Security Hub integrates with multiple third-party partner products. An integ -Integrations that send findings to Security Hub have an Amazon Resource Name (ARN). +Integrations that send findings to Security Hub CSPM have an Amazon Resource Name (ARN). @@ -22 +22 @@ Integrations that send findings to Security Hub have an Amazon Resource Name (AR -An integration might not be available in all AWS Regions. If an integration isn't supported in the Region that you are currently signed in to on the Security Hub console, it doesn't appear on the **Integrations** page of the console. For a list of integrations that are available in the China Regions and AWS GovCloud (US) Regions, see [Availability of integrations by Region](./securityhub-regions.html#securityhub-regions-integration-support). +An integration might not be available in all AWS Regions. If an integration isn't supported in the Region that you are currently signed in to on the Security Hub CSPM console, it doesn't appear on the **Integrations** page of the console. For a list of integrations that are available in the China Regions and AWS GovCloud (US) Regions, see [Availability of integrations by Region](./securityhub-regions.html#securityhub-regions-integration-support). @@ -24 +24 @@ An integration might not be available in all AWS Regions. If an integration isn' -If you have a security solution and are interested in becoming a Security Hub partner, send email to `<[[email protected]](mailto:[email protected])>`. For more information, see the [AWS Security Hub Partner Integration Guide](https://docs.aws.amazon.com/securityhub/latest/partnerguide/integration-overview.html). +If you have a security solution and are interested in becoming a Security Hub CSPM partner, send email to `<[[email protected]](mailto:[email protected])>`. For more information, see the [AWS Security Hub Cloud Security Posture Management (CSPM) Partner Integration Guide](https://docs.aws.amazon.com/securityhub/latest/partnerguide/integration-overview.html). @@ -26 +26 @@ If you have a security solution and are interested in becoming a Security Hub pa -## Overview of third-party integrations with Security Hub +## Overview of third-party integrations with Security Hub CSPM @@ -28 +28 @@ If you have a security solution and are interested in becoming a Security Hub pa -Here's an overview of the third-party integrations that send findings to Security Hub or receive findings from Security Hub: +Here's an overview of the third-party integrations that send findings to Security Hub CSPM or receive findings from Security Hub CSPM: @@ -108 +108 @@ Turbot – Turbot | Sends and receives findings | `arn:aws:securityhub:`<REGIO -## Third-party integrations that send findings to Security Hub +## Third-party integrations that send findings to Security Hub CSPM @@ -110 +110 @@ Turbot – Turbot | Sends and receives findings | `arn:aws:securityhub:`<REGIO -The following third-party partner product integrations send findings to Security Hub. Security Hub transforms the findings into the [AWS Security Finding Format](./securityhub-findings-format.html). +The following third-party partner product integrations send findings to Security Hub CSPM. Security Hub CSPM transforms the findings into the [AWS Security Finding Format](./securityhub-findings-format.html). @@ -118 +118 @@ The following third-party partner product integrations send findings to Security -3CORESec provides managed detection services for both on-premises and AWS systems. Their integration with Security Hub allows visibility into threats such as malware, privilege escalation, lateral movement, and improper network segmentation. +3CORESec provides managed detection services for both on-premises and AWS systems. Their integration with Security Hub CSPM allows visibility into threats such as malware, privilege escalation, lateral movement, and improper network segmentation. @@ -276 +276 @@ Antivirus for Amazon S3 offers real time and scheduled scans of objects and file -Contrast Security Contrast Assess is an IAST tool that offers real-time vulnerability detection in web apps, APIs, and microservices. Contrast Assess integrates with Security Hub to help provide centralized visibility and response for all your workloads. +Contrast Security Contrast Assess is an IAST tool that offers real-time vulnerability detection in web apps, APIs, and microservices. Contrast Assess integrates with Security Hub CSPM to help provide centralized visibility and response for all your workloads. @@ -324 +324 @@ Data Theorem continuously scans web applications, APIs, and cloud resources in s -Drata is a compliance automation platform that helps you achieve and maintain compliance with various frameworks, such as SOC2, ISO, and GDPR. The integration between Drata and Security Hub helps you centralize your security findings in one location. +Drata is a compliance automation platform that helps you achieve and maintain compliance with various frameworks, such as SOC2, ISO, and GDPR. The integration between Drata and Security Hub CSPM helps you centralize your security findings in one location. @@ -520 +520 @@ Protects your AWS deployment with cloud security analytics, advanced threat dete -Plerion is a Cloud Security Platform with a unique threat-led, risk-driven approach that offers preventative, detective, and corrective action across your workloads. The integration between Plerion and Security Hub allows customers to centralize and act upon their security findings in one place. +Plerion is a Cloud Security Platform with a unique threat-led, risk-driven approach that offers preventative, detective, and corrective action across your workloads. The integration between Plerion and Security Hub CSPM allows customers to centralize and act upon their security findings in one place. @@ -592 +592 @@ SentinelOne is an autonomous extended detection and response (XDR) platform enco -Snyk provides a security platform that scans app components for security risks in workloads running on AWS. These risks are sent to Security Hub as findings, helping developers and security teams visualize and prioritize them along with the rest of their AWS security findings. +Snyk provides a security platform that scans app components for security risks in workloads running on AWS. These risks are sent to Security Hub CSPM as findings, helping developers and security teams visualize and prioritize them along with the rest of their AWS security findings. @@ -674 +674 @@ Accurately identify, investigate, and prioritize vulnerabilities. Managed in the -Trend Micro Cloud One provides the right security information to teams at the right time and place. This integration sends security findings to Security Hub in real time, enhancing visibility into your AWS resources and Trend Micro Cloud One event details in Security Hub. +Trend Micro Cloud One provides the right security information to teams at the right time and place. This integration sends security findings to Security Hub CSPM in real time, enhancing visibility into your AWS resources and Trend Micro Cloud One event details in Security Hub CSPM. @@ -698 +698 @@ Vectra is transforming cybersecurity by applying advanced AI to detect and respo -Wiz continuously analyzes configurations, vulnerabilities, networks, IAM settings, secrets, and more across your AWS accounts, users, and workloads to discover critical issues that represent actual risk. Integrate Wiz with Security Hub to visualize and respond to issues that Wiz detects from the Security Hub console. +Wiz continuously analyzes configurations, vulnerabilities, networks, IAM settings, secrets, and more across your AWS accounts, users, and workloads to discover critical issues that represent actual risk. Integrate Wiz with Security Hub CSPM to visualize and respond to issues that Wiz detects from the Security Hub CSPM console. @@ -704 +704 @@ Wiz continuously analyzes configurations, vulnerabilities, networks, IAM setting -## Third-party integrations that receive findings from Security Hub +## Third-party integrations that receive findings from Security Hub CSPM @@ -706 +706 @@ Wiz continuously analyzes configurations, vulnerabilities, networks, IAM setting -The following third-party partner product integrations receive findings from Security Hub. Where noted, the product might also update findings. In this case, updates that you make to findings in the partner product are also reflected in Security Hub. +The following third-party partner product integrations receive findings from Security Hub CSPM. Where noted, the product might also update findings. In this case, updates that you make to findings in the partner product are also reflected in Security Hub CSPM. @@ -712 +712 @@ The following third-party partner product integrations receive findings from Sec -The AWS Service Management Connector for Jira sends findings from Security Hub to Jira. Jira issues are created based on the findings. When the Jira issues are updated, the corresponding findings are updated in Security Hub. +The AWS Service Management Connector for Jira sends findings from Security Hub CSPM to Jira. Jira issues are created based on the findings. When the Jira issues are updated, the corresponding findings are updated in Security Hub CSPM. @@ -716 +716 @@ The integration only supports Jira Server and Jira Data Center. -For an overview of the integration and how it works, watch the video [AWS Security Hub – Bidirectional integration with Atlassian Jira Service Management](https://www.youtube.com/watch?v=uEKwu0M8S3M). +For an overview of the integration and how it works, watch the video [AWS Security Hub Cloud Security Posture Management (CSPM) – Bidirectional integration with Atlassian Jira Service Management](https://www.youtube.com/watch?v=uEKwu0M8S3M). @@ -728 +728 @@ Jira Service Management Cloud is the cloud component of Jira Service Management. -The AWS Service Management Connector for Jira sends findings from Security Hub to Jira. The findings trigger the creation of issues in Jira Service Management Cloud. When you update those issues in Jira Service Management Cloud, the corresponding findings are also updated in Security Hub. +The AWS Service Management Connector for Jira sends findings from Security Hub CSPM to Jira. The findings trigger the creation of issues in Jira Service Management Cloud. When you update those issues in Jira Service Management Cloud, the corresponding findings are also updated in Security Hub CSPM. @@ -740 +740 @@ Opsgenie is a modern incident management solution for operating always-on servic -Integrating with Security Hub ensures that mission critical security-related incidents are routed to the appropriate teams for immediate resolution. +Integrating with Security Hub CSPM ensures that mission critical security-related incidents are routed to the appropriate teams for immediate resolution. @@ -780 +780 @@ Logz.io is a provider of Cloud SIEM that provides advanced correlation of log an -MetricStream CyberGRC helps you manage, measure, and mitigate cybersecurity risks. By receiving Security Hub findings, CyberGRC provides more visibility into these risks, so you can prioritize cybersecurity investments and comply with IT policies. +MetricStream CyberGRC helps you manage, measure, and mitigate cybersecurity risks. By receiving Security Hub CSPM findings, CyberGRC provides more visibility into these risks, so you can prioritize cybersecurity investments and comply with IT policies. @@ -800 +800 @@ ArcSight accelerates effective threat detection and response in real time, integ -New Relic Vulnerability Management receives security findings from Security Hub, so you can get a centralized view of security alongside performance telemetry in context across your stack. +New Relic Vulnerability Management receives security findings from Security Hub CSPM, so you can get a centralized view of security alongside performance telemetry in context across your stack. @@ -814 +814 @@ AWS users can use the PagerDuty set of AWS integrations to scale their AWS and h -When coupled with Security Hub aggregated and organized security alerts, PagerDuty allows teams to automate their threat response process and quickly set up custom actions to prevent potential issues. +When coupled with Security Hub CSPM aggregated and organized security alerts, PagerDuty allows teams to automate their threat response process and quickly set up custom actions to prevent potential issues. @@ -836 +836 @@ Cortex XSOAR is a Security Orchestration, Automation, and Response (SOAR) platfo -Palo Alto VM-Series integration with Security Hub collects threat intelligence and sends it to the VM-Series next-generation firewall as an automatic security policy update that blocks malicious IP address activity. +Palo Alto VM-Series integration with Security Hub CSPM collects threat intelligence and sends it to the VM-Series next-generation firewall as an automatic security policy update that blocks malicious IP address activity. @@ -874 +874 @@ RSA Archer IT and Security Risk Management allows you to determine which assets -The ServiceNow integration with Security Hub allows security findings from Security Hub to be viewed within ServiceNow ITSM. You can also configure ServiceNow to automatically create an incident or problem when it receives a finding from Security Hub. +The ServiceNow integration with Security Hub CSPM allows security findings from Security Hub CSPM to be viewed within ServiceNow ITSM. You can also configure ServiceNow to automatically create an incident or problem when it receives a finding from Security Hub CSPM. @@ -876 +876 @@ The ServiceNow integration with Security Hub allows security findings from Secur -Any updates to these incidents and problems result in updates to the findings in Security Hub. +Any updates to these incidents and problems result in updates to the findings in Security Hub CSPM. @@ -878 +878 @@ Any updates to these incidents and problems result in updates to the findings in -For an overview of the integration and how it works, watch the video [AWS Security Hub - Bidirectional integration with ServiceNow ITSM](https://www.youtube.com/watch?v=OYTi0sjEggE). +For an overview of the integration and how it works, watch the video [AWS Security Hub Cloud Security Posture Management (CSPM) - Bidirectional integration with ServiceNow ITSM](https://www.youtube.com/watch?v=OYTi0sjEggE). @@ -898 +898 @@ Slack is a layer of the business technology stack that brings together people, d -Splunk uses Amazon CloudWatch Events as a consumer of Security Hub findings. Send your data to Splunk for advanced security analytics and SIEM. +Splunk uses Amazon CloudWatch Events as a consumer of Security Hub CSPM findings. Send your data to Splunk for advanced security analytics and SIEM. @@ -908 +908 @@ Splunk uses Amazon CloudWatch Events as a consumer of Security Hub findings. Sen -With the Splunk Phantom application for AWS Security Hub, findings are sent to Phantom for automated context enrichment with additional threat intelligence information or to perform automated response actions. +With the Splunk Phantom application for AWS Security Hub Cloud Security Posture Management (CSPM), findings are sent to Phantom for automated context enrichment with additional threat intelligence information or to perform automated response actions. @@ -934 +934 @@ Trellix Helix is a cloud-hosted security operations platform that allows organiz -## Third-party integrations that send findings to and receive findings from Security Hub +## Third-party integrations that send findings to and receive findings from Security Hub CSPM @@ -936 +936 @@ Trellix Helix is a cloud-hosted security operations platform that allows organiz -The following third-party partner product integrations send findings to and receive findings from Security Hub. +The following third-party partner product integrations send findings to and receive findings from Security Hub CSPM. @@ -944 +944 @@ The following third-party partner product integrations send findings to and rece -The Caveonix AI-powered platform automates visibility, assessment, and mitigation in hybrid clouds, covering cloud-native services, VMs, and containers. Integrated with AWS Security Hub, Caveonix merges AWS data and advanced analytics for insights into security alerts and compliance. +The Caveonix AI-powered platform automates visibility, assessment, and mitigation in hybrid clouds, covering cloud-native services, VMs, and containers. Integrated with AWS Security Hub Cloud Security Posture Management (CSPM), Caveonix merges AWS data and advanced analytics for insights into security alerts and compliance.