AWS systems-manager documentation change
Summary
Updated documentation to reflect rebranding from 'Security Hub' to 'Security Hub CSPM' throughout the file, including titles, service references, procedures, and widget names.
Security assessment
The changes involve terminology updates (Security Hub → Security Hub CSPM) without introducing new security features, addressing vulnerabilities, or modifying security procedures. The updates appear to be branding or product naming adjustments rather than security fixes.
Diff
diff --git a/systems-manager/latest/userguide/explorer-securityhub-integration.md b/systems-manager/latest/userguide/explorer-securityhub-integration.md index 419f2206b..0c736873b 100644 --- a//systems-manager/latest/userguide/explorer-securityhub-integration.md +++ b//systems-manager/latest/userguide/explorer-securityhub-integration.md @@ -5 +5 @@ -Types of findings that Explorer receivesEnabling integrationHow to view findings from Security HubHow to stop receiving findings +Types of findings that Explorer receivesEnabling integrationHow to view findings from Security Hub CSPMHow to stop receiving findings @@ -9 +9 @@ AWS Systems Manager Change Manager is no longer open to new customers. Existing -# Receiving findings from AWS Security Hub in Explorer +# Receiving findings from AWS Security Hub CSPM in Explorer @@ -11 +11 @@ AWS Systems Manager Change Manager is no longer open to new customers. Existing -[AWS Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides a comprehensive view of your security state in AWS. The service collects security data, called _findings_ , from across AWS accounts, services, and supported third-party products. Security Hub findings can help you check your environment against security industry standards and best practices, analyze your security trends, and identify the highest priority security issues. +[AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides a comprehensive view of your security state in AWS. The service collects security data, called _findings_ , from across AWS accounts, services, and supported third-party products. Security Hub CSPM findings can help you check your environment against security industry standards and best practices, analyze your security trends, and identify the highest priority security issues. @@ -13 +13 @@ AWS Systems Manager Change Manager is no longer open to new customers. Existing -Security Hub sends findings to Amazon EventBridge, which uses an event rule to send the findings to Explorer. After you enable integration, as described here, you can view Security Hub findings in an Explorer widget and view finding details in OpsCenter OpsItems. The widget provides a summary of all Security Hub findings based on severity. New findings in Security Hub are usually visible in Explorer within seconds of being created. +Security Hub CSPM sends findings to Amazon EventBridge, which uses an event rule to send the findings to Explorer. After you enable integration, as described here, you can view Security Hub CSPM findings in an Explorer widget and view finding details in OpsCenter OpsItems. The widget provides a summary of all Security Hub CSPM findings based on severity. New findings in Security Hub CSPM are usually visible in Explorer within seconds of being created. @@ -19 +19 @@ Note the following important information: - * Explorer is integrated with OpsCenter, a tool in Systems Manager. After you enable Explorer integration with Security Hub, OpsCenter automatically creates OpsItems for Security Hub findings. Depending on your AWS environment, enabling integration can result in large numbers of OpsItems, at a cost. + * Explorer is integrated with OpsCenter, a tool in Systems Manager. After you enable Explorer integration with Security Hub CSPM, OpsCenter automatically creates OpsItems for Security Hub CSPM findings. Depending on your AWS environment, enabling integration can result in large numbers of OpsItems, at a cost. @@ -21 +21 @@ Note the following important information: -Before you continue, read about OpsCenter integration with Security Hub. The topic includes specific details about how changes and updates to findings and OpsItems are charged to your account. For more information, see [Understanding OpsCenter integration with AWS Security Hub](./OpsCenter-applications-that-integrate.html#OpsCenter-integrate-with-security-hub). For OpsCenter pricing information, see [AWS Systems Manager Pricing](https://aws.amazon.com/systems-manager/pricing/). +Before you continue, read about OpsCenter integration with Security Hub CSPM. The topic includes specific details about how changes and updates to findings and OpsItems are charged to your account. For more information, see [Understanding OpsCenter integration with AWS Security Hub CSPM](./OpsCenter-applications-that-integrate.html#OpsCenter-integrate-with-security-hub). For OpsCenter pricing information, see [AWS Systems Manager Pricing](https://aws.amazon.com/systems-manager/pricing/). @@ -23 +23 @@ Before you continue, read about OpsCenter integration with Security Hub. The top - * If you create a resource data sync in Explorer while logged into the administrator account, Security Hub integration is automatically enabled for the administrator and all member accounts in the sync. Once enabled, OpsCenter automatically creates OpsItems for Security Hub findings, at a cost. For more information about creating a resource data sync, see [Setting up Systems Manager Explorer to display data from multiple accounts and Regions](./Explorer-resource-data-sync.html). + * If you create a resource data sync in Explorer while logged into the administrator account, Security Hub CSPM integration is automatically enabled for the administrator and all member accounts in the sync. Once enabled, OpsCenter automatically creates OpsItems for Security Hub CSPM findings, at a cost. For more information about creating a resource data sync, see [Setting up Systems Manager Explorer to display data from multiple accounts and Regions](./Explorer-resource-data-sync.html). @@ -30 +30 @@ Before you continue, read about OpsCenter integration with Security Hub. The top -Explorer receives [all findings](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cwe-integration-types.html#securityhub-cwe-integration-types-all-findings) from Security Hub. You can see all findings based on severity in the Explorer widget when you turn on the Security Hub default settings. By default, Explorer creates OpsItems for critical and high severity findings. You can manually configure Explorer to create OpsItems for medium and low severity findings. +Explorer receives [all findings](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cwe-integration-types.html#securityhub-cwe-integration-types-all-findings) from Security Hub CSPM. You can see all findings based on severity in the Explorer widget when you turn on the Security Hub CSPM default settings. By default, Explorer creates OpsItems for critical and high severity findings. You can manually configure Explorer to create OpsItems for medium and low severity findings. @@ -32 +32 @@ Explorer receives [all findings](https://docs.aws.amazon.com/securityhub/latest/ -Though Explorer doesn't create OpsItems for informational findings, you can view informational operations data (OpsData) in the Security Hub findings summary widget. Explorer creates OpsData for all findings regardless of severity. For more information about Security Hub severity levels, see [Severity](https://docs.aws.amazon.com//securityhub/1.0/APIReference/API_Severity.html) in the _AWS Security Hub API Reference_. +Though Explorer doesn't create OpsItems for informational findings, you can view informational operations data (OpsData) in the Security Hub CSPM findings summary widget. Explorer creates OpsData for all findings regardless of severity. For more information about Security Hub CSPM severity levels, see [Severity](https://docs.aws.amazon.com//securityhub/1.0/APIReference/API_Severity.html) in the _AWS Security Hub CSPM API Reference_. @@ -36 +36 @@ Though Explorer doesn't create OpsItems for informational findings, you can view -This section describes how to enable and configure Explorer to start receiving Security Hub findings. +This section describes how to enable and configure Explorer to start receiving Security Hub CSPM findings. @@ -40 +40 @@ This section describes how to enable and configure Explorer to start receiving S -Complete the following tasks before you configure Explorer to start receiving Security Hub findings. +Complete the following tasks before you configure Explorer to start receiving Security Hub CSPM findings. @@ -42 +42 @@ Complete the following tasks before you configure Explorer to start receiving Se - * Enable and configure Security Hub. For more information, see [Setting up Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html) in the _AWS Security Hub User Guide_. + * Enable and configure Security Hub CSPM. For more information, see [Setting up Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html) in the _AWS Security Hub CSPM User Guide_. @@ -44 +44 @@ Complete the following tasks before you configure Explorer to start receiving Se - * Log into the AWS Organizations management account. Systems Manager requires access to AWS Organizations to create OpsItems from Security Hub findings. After you log in to the management account, you're prompted to select the **Enable access** button on the Explorer **Configure dashboard** tab, as described in the following procedure. If you don't log in to the AWS Organizations management account, you can't allow access and Explorer can't create OpsItems from Security Hub findings. + * Log into the AWS Organizations management account. Systems Manager requires access to AWS Organizations to create OpsItems from Security Hub CSPM findings. After you log in to the management account, you're prompted to select the **Enable access** button on the Explorer **Configure dashboard** tab, as described in the following procedure. If you don't log in to the AWS Organizations management account, you can't allow access and Explorer can't create OpsItems from Security Hub CSPM findings. @@ -49 +49 @@ Complete the following tasks before you configure Explorer to start receiving Se -###### To start receiving Security Hub findings +###### To start receiving Security Hub CSPM findings @@ -59 +59 @@ Complete the following tasks before you configure Explorer to start receiving Se - 5. Select **AWS Security Hub**. + 5. Select **AWS Security Hub CSPM**. @@ -61 +61 @@ Complete the following tasks before you configure Explorer to start receiving Se - 6. Select the **Disabled** slider to turn on **AWS Security Hub**. + 6. Select the **Disabled** slider to turn on **AWS Security Hub CSPM**. @@ -65 +65 @@ Critical and high severity findings are displayed by default. To display medium - 7. In the **OpsItems created by Security Hub findings** section, choose **Enable access**. If you don't see this button, log in to the AWS Organizations management account and return to this page to select the button. + 7. In the **OpsItems created by Security Hub CSPM findings** section, choose **Enable access**. If you don't see this button, log in to the AWS Organizations management account and return to this page to select the button. @@ -70 +70 @@ Critical and high severity findings are displayed by default. To display medium -## How to view findings from Security Hub +## How to view findings from Security Hub CSPM @@ -72 +72 @@ Critical and high severity findings are displayed by default. To display medium -The following procedure describes how to view Security Hub findings. +The following procedure describes how to view Security Hub CSPM findings. @@ -74 +74 @@ The following procedure describes how to view Security Hub findings. -###### To view Security Hub findings +###### To view Security Hub CSPM findings @@ -80 +80 @@ The following procedure describes how to view Security Hub findings. - 3. Find the **AWS Security Hub findings summary** widget. This displays your Security Hub findings. You can select a severity level to view a detailed description of the corresponding OpsItem. + 3. Find the **AWS Security Hub CSPM findings summary** widget. This displays your Security Hub CSPM findings. You can select a severity level to view a detailed description of the corresponding OpsItem. @@ -87 +87 @@ The following procedure describes how to view Security Hub findings. -The following procedure describes how to stop receiving Security Hub findings. +The following procedure describes how to stop receiving Security Hub CSPM findings. @@ -89 +89 @@ The following procedure describes how to stop receiving Security Hub findings. -###### To stop receiving Security Hub findings +###### To stop receiving Security Hub CSPM findings @@ -99 +99 @@ The following procedure describes how to stop receiving Security Hub findings. - 5. Select the **Enabled** slider to turn off **AWS Security Hub**. + 5. Select the **Enabled** slider to turn off **AWS Security Hub CSPM**. @@ -106 +106 @@ The following procedure describes how to stop receiving Security Hub findings. -If the option to disable Security Hub findings is grayed out in the console, you can disable this setting by running the following command in the AWS CLI. You must run the command while logged into either the AWS Organizations management account or the Systems Manager delegated administrator account. For the `region` parameter, specify the AWS Region where you want to stop receiving Security Hub findings in Explorer. +If the option to disable Security Hub CSPM findings is grayed out in the console, you can disable this setting by running the following command in the AWS CLI. You must run the command while logged into either the AWS Organizations management account or the Systems Manager delegated administrator account. For the `region` parameter, specify the AWS Region where you want to stop receiving Security Hub CSPM findings in Explorer.