AWS wellarchitected documentation change
Summary
Replaced 'AWS Security Hub' with 'AWS Security Hub CSPM' in logging configuration guidance and service references
Security assessment
The modification emphasizes CSPM capabilities in logging context, which relates to security posture management documentation. No direct security vulnerability remediation is indicated.
Diff
diff --git a/wellarchitected/2022-03-31/framework/sec_detect_investigate_events_app_service_logging.md b/wellarchitected/2022-03-31/framework/sec_detect_investigate_events_app_service_logging.md index e5a1a0394..88cc83dc8 100644 --- a//wellarchitected/2022-03-31/framework/sec_detect_investigate_events_app_service_logging.md +++ b//wellarchitected/2022-03-31/framework/sec_detect_investigate_events_app_service_logging.md @@ -9 +9 @@ Implementation guidanceResources -Configure logging throughout the workload, including application logs, resource logs, and AWS service logs. For example, ensure that AWS CloudTrail, Amazon CloudWatch Logs, Amazon GuardDuty and AWS Security Hub are enabled for all accounts within your organization. +Configure logging throughout the workload, including application logs, resource logs, and AWS service logs. For example, ensure that AWS CloudTrail, Amazon CloudWatch Logs, Amazon GuardDuty and AWS Security Hub CSPM are enabled for all accounts within your organization. @@ -21 +21 @@ In AWS, services that can implement this base set include: - * [AWS Security Hub](http://aws.amazon.com/security-hub) provides a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services and optional third- party products to give you a comprehensive view of security alerts and compliance status. + * [AWS Security Hub CSPM](http://aws.amazon.com/security-hub) provides a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services and optional third- party products to give you a comprehensive view of security alerts and compliance status. @@ -60 +60 @@ One approach is to use AWS Lambda functions, triggered on events when logs are d - * Enable [AWS Security Hub](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html): Security Hub provides you with a comprehensive view of your security state in AWS and helps you check your compliance with the security industry standards and best practices. Security Hub collects security data from across AWS accounts, services, and supported third-party partner products and helps you analyze your security trends and identify the highest priority security issues. + * Enable [AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html): Security Hub CSPM provides you with a comprehensive view of your security state in AWS and helps you check your compliance with the security industry standards and best practices. Security Hub CSPM collects security data from across AWS accounts, services, and supported third-party partner products and helps you analyze your security trends and identify the highest priority security issues. @@ -84 +84 @@ One approach is to use AWS Lambda functions, triggered on events when logs are d - * [Remediating Amazon GuardDuty and AWS Security Hub Findings ](https://youtu.be/nyh4imv8zuk) + * [Remediating Amazon GuardDuty and AWS Security Hub CSPM Findings ](https://youtu.be/nyh4imv8zuk) @@ -86 +86 @@ One approach is to use AWS Lambda functions, triggered on events when logs are d - * [ Threat management in the cloud: Amazon GuardDuty and AWS Security Hub](https://youtu.be/vhYsm5gq9jE) + * [ Threat management in the cloud: Amazon GuardDuty and AWS Security Hub CSPM](https://youtu.be/vhYsm5gq9jE)