AWS Security ChangesHomeSearch

AWS wellarchitected documentation change

Service: wellarchitected · 2025-12-10 · Documentation low

File: wellarchitected/2023-10-03/framework/sec_protect_data_rest_automate_protection.md

Summary

Updated reference from 'AWS Security Hub' to 'AWS Security Hub CSPM' in data protection automation guidance

Security assessment

Change only rebrands existing security tool reference without altering security functionality or addressing vulnerabilities

Diff

diff --git a/wellarchitected/2023-10-03/framework/sec_protect_data_rest_automate_protection.md b/wellarchitected/2023-10-03/framework/sec_protect_data_rest_automate_protection.md
index 414660719..c57844da5 100644
--- a//wellarchitected/2023-10-03/framework/sec_protect_data_rest_automate_protection.md
+++ b//wellarchitected/2023-10-03/framework/sec_protect_data_rest_automate_protection.md
@@ -9 +9 @@ Implementation guidanceResources
-Use automated tools to validate and enforce data at rest controls continuously, for example, verify that there are only encrypted storage resources. You can [automate validation that all EBS volumes are encrypted](https://docs.aws.amazon.com/config/latest/developerguide/encrypted-volumes.html) using [AWS Config Rules](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html). [AWS Security Hub](http://aws.amazon.com/security-hub/) can also verify several different controls through automated checks against security standards. Additionally, your AWS Config Rules can automatically [remediate noncompliant resources](https://docs.aws.amazon.com/config/latest/developerguide/remediation.html#setup-autoremediation). 
+Use automated tools to validate and enforce data at rest controls continuously, for example, verify that there are only encrypted storage resources. You can [automate validation that all EBS volumes are encrypted](https://docs.aws.amazon.com/config/latest/developerguide/encrypted-volumes.html) using [AWS Config Rules](https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config.html). [AWS Security Hub CSPM](http://aws.amazon.com/security-hub/) can also verify several different controls through automated checks against security standards. Additionally, your AWS Config Rules can automatically [remediate noncompliant resources](https://docs.aws.amazon.com/config/latest/developerguide/remediation.html#setup-autoremediation).