AWS Security ChangesHomeSearch

AWS inspector documentation change

Service: inspector · 2025-11-22 · Documentation medium

File: inspector/latest/user/integrations.md

Summary

Added new section 'Using Amazon Inspector with AWS Organizations' detailing centralized policy enforcement for cross-account security scanning

Security assessment

Documents organizational security controls that enforce consistent vulnerability scanning across accounts and prevent scan disablement. This is preventive security documentation rather than addressing a specific vulnerability.

Diff

diff --git a/inspector/latest/user/integrations.md b/inspector/latest/user/integrations.md
index 36b3e85cb..6b682be9b 100644
--- a//inspector/latest/user/integrations.md
+++ b//inspector/latest/user/integrations.md
@@ -5 +5 @@
-Integrating Amazon Inspector with Amazon ECRAmazon Inspector integration with Security Hub
+Using Amazon Inspector with AWS OrganizationsIntegrating Amazon Inspector with Amazon ECRAmazon Inspector integration with Security Hub
@@ -10,0 +11,19 @@ Amazon Inspector integrates with other AWS services. These services can ingest d
+## Using Amazon Inspector with AWS Organizations
+
+[AWS Organizations](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_introduction.html) helps you centrally manage and govern your AWS environment. You can use AWS Organizations policies to enable and manage Amazon Inspector across multiple accounts in your organization automatically. 
+
+Amazon Inspector organization policies allow you to: 
+
+  * Centrally enable Amazon Inspector scan types (EC2, ECR, Lambda, Code Repository) across your organization 
+
+  * Automatically apply Amazon Inspector enablement to new accounts joining the organization 
+
+  * Enforce consistent scanning coverage across organizational units 
+
+  * Prevent member accounts from disabling required scanning 
+
+
+
+
+Organization policies control resource type enablement, while delegated administrators retain control over scan configuration settings. For information about how organization policies interact with delegated administrator and member account permissions, see [Managing multiple accounts in Amazon Inspector with AWS Organizations](./managing-multiple-accounts.html). For detailed instructions on creating Amazon Inspector policies, see the AWS Organizations documentation for Amazon Inspector policies. 
+