AWS Security ChangesHomeSearch

AWS prescriptive-guidance documentation change

Service: prescriptive-guidance · 2025-12-10 · Documentation low

File: prescriptive-guidance/latest/patterns/configure-logging-and-monitoring-for-security-events-in-your-aws-iot-environment.md

Summary

Updated all 'Security Hub' references to 'Security Hub CSPM' including workflow steps, components, and task descriptions

Security assessment

Consistent terminology update across document. IoT security monitoring approach remains unchanged. No vulnerability fixes or new security features documented.

Diff

diff --git a/prescriptive-guidance/latest/patterns/configure-logging-and-monitoring-for-security-events-in-your-aws-iot-environment.md b/prescriptive-guidance/latest/patterns/configure-logging-and-monitoring-for-security-events-in-your-aws-iot-environment.md
index 50558d0d0..f3e86fc96 100644
--- a//prescriptive-guidance/latest/patterns/configure-logging-and-monitoring-for-security-events-in-your-aws-iot-environment.md
+++ b//prescriptive-guidance/latest/patterns/configure-logging-and-monitoring-for-security-events-in-your-aws-iot-environment.md
@@ -67 +67 @@ The diagram shows the following workflow:
-  7. AWS Security Hub monitors your IoT account by using security best practices. Monitor Security Hub notifications by using CloudWatch Events with log groups in CloudWatch Logs as the target. When Security Hub notifications are sent to CloudWatch Logs, use subscriptions to push events to your Centralized Monitoring solution or use the Security Hub console in your Security account to view the notifications.
+  7. AWS Security Hub CSPM monitors your IoT account by using security best practices. Monitor Security Hub CSPM notifications by using CloudWatch Events with log groups in CloudWatch Logs as the target. When Security Hub CSPM notifications are sent to CloudWatch Logs, use subscriptions to push events to your Centralized Monitoring solution or use the Security Hub CSPM console in your Security account to view the notifications.
@@ -102 +102 @@ The diagram shows the following workflow:
-  * [AWS Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides a comprehensive view of your security state in AWS and helps you check your environment against security industry standards and best practices.
+  * [AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides a comprehensive view of your security state in AWS and helps you check your environment against security industry standards and best practices.
@@ -113,2 +113,2 @@ Task| Description| Skills required
-Validate the security guardrails in the IoT account.| Validate that the guardrails for CloudTrail, AWS Config, GuardDuty, and Security Hub are enabled in your IoT account.| AWS administrator  
-Validate that your IoT account is configured as a member account of your Security account.| Validate that your IoT account is configured and associated as a member account for GuardDuty and Security Hub in your Security account.For more information about this, see [Managing GuardDuty accounts with AWS Organizations](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html) in the GuardDuty documentation and [Managing administrator and member accounts](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-accounts.html) in the Security Hub documentation.| AWS administrator  
+Validate the security guardrails in the IoT account.| Validate that the guardrails for CloudTrail, AWS Config, GuardDuty, and Security Hub CSPM are enabled in your IoT account.| AWS administrator  
+Validate that your IoT account is configured as a member account of your Security account.| Validate that your IoT account is configured and associated as a member account for GuardDuty and Security Hub CSPM in your Security account.For more information about this, see [Managing GuardDuty accounts with AWS Organizations](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html) in the GuardDuty documentation and [Managing administrator and member accounts](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-accounts.html) in the Security Hub CSPM documentation.| AWS administrator  
@@ -128 +128 @@ Set up GuardDuty.| Set up and configure GuardDuty to send findings to Amazon Clo
-Set up Security Hub.| Set up Security Hub and enable the [CIS AWS Foundations Benchmark](https://docs.aws.amazon.com/securityhub/latest/userguide/cis-aws-foundations-benchmark.html) and [AWS Foundational Security Best Practices](https://docs.aws.amazon.com/securityhub/latest/userguide/fsbp-standard.html) standards.For more information about this, see [Automated response and remediation](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cloudwatch-events.html) in the Security Hub documentation.| AWS administrator  
+Set up Security Hub CSPM.| Set up Security Hub CSPM and enable the [CIS AWS Foundations Benchmark](https://docs.aws.amazon.com/securityhub/latest/userguide/cis-aws-foundations-benchmark.html) and [AWS Foundational Security Best Practices](https://docs.aws.amazon.com/securityhub/latest/userguide/fsbp-standard.html) standards.For more information about this, see [Automated response and remediation](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cloudwatch-events.html) in the Security Hub CSPM documentation.| AWS administrator