AWS prescriptive-guidance documentation change
Summary
Replaced all references to 'AWS Security Hub' with 'AWS Security Hub CSPM', including service name, administrator account references, and documentation links
Security assessment
This is a branding/naming update without substantive security content changes. The documentation continues to describe the same security posture management capabilities without addressing vulnerabilities or adding new security guidance. The core functionality and recommendations remain unchanged.
Diff
diff --git a/prescriptive-guidance/latest/transitioning-to-multiple-aws-accounts/security-incident-response.md b/prescriptive-guidance/latest/transitioning-to-multiple-aws-accounts/security-incident-response.md index 2f895434f..922380fc6 100644 --- a//prescriptive-guidance/latest/transitioning-to-multiple-aws-accounts/security-incident-response.md +++ b//prescriptive-guidance/latest/transitioning-to-multiple-aws-accounts/security-incident-response.md @@ -5 +5 @@ -Amazon GuardDutyAmazon MacieAWS Security Hub +Amazon GuardDutyAmazon MacieAWS Security Hub CSPM @@ -17 +17 @@ This guide reviews the use of the following AWS services to help protect your AW - * AWS Security Hub + * AWS Security Hub CSPM @@ -60 +60 @@ Macie is a regional service. This means that you must enable Macie in each Regio -## AWS Security Hub +## AWS Security Hub CSPM @@ -62 +62 @@ Macie is a regional service. This means that you must enable Macie in each Regio -[AWS Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides you with a comprehensive view of your security state in AWS. You can use it to check your environment against security industry standards and best practices. Security Hub collects security data from across all of your AWS accounts, services (including GuardDuty and Macie), and supported third-party partner products. Security Hub helps you analyze security trends and identify the highest priority security issues. Security Hub provides various security standards that you can enable to perform compliance checks in each AWS account. +[AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides you with a comprehensive view of your security state in AWS. You can use it to check your environment against security industry standards and best practices. Security Hub CSPM collects security data from across all of your AWS accounts, services (including GuardDuty and Macie), and supported third-party partner products. Security Hub CSPM helps you analyze security trends and identify the highest priority security issues. Security Hub CSPM provides various security standards that you can enable to perform compliance checks in each AWS account. @@ -64 +64 @@ Macie is a regional service. This means that you must enable Macie in each Regio -When you use Security Hub with AWS Organizations, the management account in the organization can designate any account in the organization to be the Security Hub _administrator account_. The Security Hub administrator account can then enable and manage other member accounts in the organization. For more information, see [Using AWS Organizations to manage accounts](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-prereq-orgs.html) (Security Hub documentation). +When you use Security Hub CSPM with AWS Organizations, the management account in the organization can designate any account in the organization to be the Security Hub CSPM _administrator account_. The Security Hub CSPM administrator account can then enable and manage other member accounts in the organization. For more information, see [Using AWS Organizations to manage accounts](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-prereq-orgs.html) (Security Hub CSPM documentation). @@ -66 +66 @@ When you use Security Hub with AWS Organizations, the management account in the -Security Hub is a regional service. This means that you must enable Security Hub in each Region that you want to analyze, and in AWS Organizations, you must define the delegated administrator for each Region. +Security Hub CSPM is a regional service. This means that you must enable Security Hub CSPM in each Region that you want to analyze, and in AWS Organizations, you must define the delegated administrator for each Region. @@ -70 +70 @@ Security Hub is a regional service. This means that you must enable Security Hub - * Adhere to the [Prerequisites and recommendations](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-setup-prereqs.html) (Security Hub documentation). + * Adhere to the [Prerequisites and recommendations](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-setup-prereqs.html) (Security Hub CSPM documentation). @@ -72 +72 @@ Security Hub is a regional service. This means that you must enable Security Hub - * Within every Region, delegate the **security-tooling-prod** account to administer Security Hub for your organization. For more information, see [Designating a Security Hub administrator account](https://docs.aws.amazon.com/securityhub/latest/userguide/designate-orgs-admin-account.html) (Security Hub documentation). + * Within every Region, delegate the **security-tooling-prod** account to administer Security Hub CSPM for your organization. For more information, see [Designating a Security Hub CSPM administrator account](https://docs.aws.amazon.com/securityhub/latest/userguide/designate-orgs-admin-account.html) (Security Hub CSPM documentation). @@ -74 +74 @@ Security Hub is a regional service. This means that you must enable Security Hub - * Configure Security Hub to automatically enroll new AWS accounts when they are added into the organization. + * Configure Security Hub CSPM to automatically enroll new AWS accounts when they are added into the organization. @@ -76 +76 @@ Security Hub is a regional service. This means that you must enable Security Hub - * Enable the [AWS Foundational Security Best Practices standard](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp.html) (Security Hub documentation) to detect when resources deviate from security best practices. + * Enable the [AWS Foundational Security Best Practices standard](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp.html) (Security Hub CSPM documentation) to detect when resources deviate from security best practices. @@ -78 +78 @@ Security Hub is a regional service. This means that you must enable Security Hub - * Enable [Cross-Region aggregation](https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html) (Security Hub documentation) so that you can view and manage all of your Security Hub findings from a single Region. + * Enable [Cross-Region aggregation](https://docs.aws.amazon.com/securityhub/latest/userguide/finding-aggregation.html) (Security Hub CSPM documentation) so that you can view and manage all of your Security Hub CSPM findings from a single Region.