AWS prescriptive-guidance documentation change
Summary
Updated security services list to include 'AWS Security Hub CSPM' instead of generic 'AWS Security Hub'
Security assessment
Adds specificity about CSPM capabilities but doesn't indicate remediation of a security vulnerability. Enhances security service documentation.
Diff
diff --git a/prescriptive-guidance/latest/implementing-logging-monitoring-cloudwatch/welcome.md b/prescriptive-guidance/latest/implementing-logging-monitoring-cloudwatch/welcome.md index 3f024709d..35979071f 100644 --- a//prescriptive-guidance/latest/implementing-logging-monitoring-cloudwatch/welcome.md +++ b//prescriptive-guidance/latest/implementing-logging-monitoring-cloudwatch/welcome.md @@ -15 +15 @@ Your logging and monitoring approach should be based on the [six pillars](https: -This guide doesn't extensively discuss logging and monitoring for security or cost-optimization because these are topics that require in-depth evaluation. There are many AWS services that support security logging and monitoring, including [AWS CloudTrail](https://docs.aws.amazon.com//awscloudtrail/latest/userguide/cloudtrail-user-guide.html), [AWS Config](https://docs.aws.amazon.com//config/latest/developerguide/WhatIsConfig.html), [Amazon Inspector](https://docs.aws.amazon.com//inspector/latest/userguide/inspector_introduction.html), [Amazon Detective](https://docs.aws.amazon.com//detective/latest/userguide/detective-investigation-about.html), [Amazon Macie](https://docs.aws.amazon.com//macie/latest/user/what-is-macie.html), [Amazon GuardDuty](https://docs.aws.amazon.com//guardduty/latest/ug/what-is-guardduty.html), and [AWS Security Hub](https://docs.aws.amazon.com//securityhub/). You can also use [AWS Cost Explorer](https://docs.aws.amazon.com//awsaccountbilling/latest/aboutv2/ce-what-is.html), [AWS Budgets](https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html), and [CloudWatch billing metrics](https://docs.aws.amazon.com//AmazonCloudWatch/latest/monitoring/gs_monitor_estimated_charges_with_cloudwatch.html) for cost optimization. +This guide doesn't extensively discuss logging and monitoring for security or cost-optimization because these are topics that require in-depth evaluation. There are many AWS services that support security logging and monitoring, including [AWS CloudTrail](https://docs.aws.amazon.com//awscloudtrail/latest/userguide/cloudtrail-user-guide.html), [AWS Config](https://docs.aws.amazon.com//config/latest/developerguide/WhatIsConfig.html), [Amazon Inspector](https://docs.aws.amazon.com//inspector/latest/userguide/inspector_introduction.html), [Amazon Detective](https://docs.aws.amazon.com//detective/latest/userguide/detective-investigation-about.html), [Amazon Macie](https://docs.aws.amazon.com//macie/latest/user/what-is-macie.html), [Amazon GuardDuty](https://docs.aws.amazon.com//guardduty/latest/ug/what-is-guardduty.html), and [AWS Security Hub CSPM](https://docs.aws.amazon.com//securityhub/). You can also use [AWS Cost Explorer](https://docs.aws.amazon.com//awsaccountbilling/latest/aboutv2/ce-what-is.html), [AWS Budgets](https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html), and [CloudWatch billing metrics](https://docs.aws.amazon.com//AmazonCloudWatch/latest/monitoring/gs_monitor_estimated_charges_with_cloudwatch.html) for cost optimization.