AWS Security ChangesHomeSearch

AWS wellarchitected documentation change

Service: wellarchitected · 2025-12-10 · Documentation low

File: wellarchitected/2022-03-31/framework/ops_ready_to_support_const_orr.md

Summary

Updated 'AWS Security Hub' references to 'AWS Security Hub CSPM' in two locations

Security assessment

Change specifies Cloud Security Posture Management (CSPM) capabilities, clarifying security feature usage in operational readiness reviews. No vulnerability remediation, but enhances documentation of security controls.

Diff

diff --git a/wellarchitected/2022-03-31/framework/ops_ready_to_support_const_orr.md b/wellarchitected/2022-03-31/framework/ops_ready_to_support_const_orr.md
index a7bf3740b..b3c4d33f7 100644
--- a//wellarchitected/2022-03-31/framework/ops_ready_to_support_const_orr.md
+++ b//wellarchitected/2022-03-31/framework/ops_ready_to_support_const_orr.md
@@ -49 +49 @@ Run ORRs before a workload launches to general availability and then throughout
-An ORR is two things: a process and a checklist. Your ORR process should be adopted by your organization and supported by an executive sponsor. At a minimum, ORRs must be conducted before a workload launches to general availability. Run the ORR throughout the software development lifecycle to keep it up to date with best practices or new requirements. The ORR checklist should include configuration items, security and governance requirements, and best practices from your organization. Over time, you can use services, such as [AWS Config](https://docs.aws.amazon.com/config/latest/developerguide/WhatIsConfig.html), [AWS Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html), and [AWS Control Tower Guardrails](https://docs.aws.amazon.com/controltower/latest/userguide/guardrails.html), to build best practices from the ORR into guardrails for automatic detection of best practices. 
+An ORR is two things: a process and a checklist. Your ORR process should be adopted by your organization and supported by an executive sponsor. At a minimum, ORRs must be conducted before a workload launches to general availability. Run the ORR throughout the software development lifecycle to keep it up to date with best practices or new requirements. The ORR checklist should include configuration items, security and governance requirements, and best practices from your organization. Over time, you can use services, such as [AWS Config](https://docs.aws.amazon.com/config/latest/developerguide/WhatIsConfig.html), [AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html), and [AWS Control Tower Guardrails](https://docs.aws.amazon.com/controltower/latest/userguide/guardrails.html), to build best practices from the ORR into guardrails for automatic detection of best practices. 
@@ -138 +138 @@ Support customers with Enterprise Support can request the [Operational Readiness
-  * [AWS Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html)
+  * [AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html)