AWS wellarchitected documentation change
Summary
Replaced AWS Security Hub with AWS Security Hub CSPM in vulnerability management context
Security assessment
Branding update from Security Hub to Security Hub CSPM. Vulnerability management processes and integration capabilities remain identical. No security weaknesses addressed.
Diff
diff --git a/wellarchitected/2025-02-25/framework/sec_protect_compute_vulnerability_management.md b/wellarchitected/2025-02-25/framework/sec_protect_compute_vulnerability_management.md index b745af205..aad01d0eb 100644 --- a//wellarchitected/2025-02-25/framework/sec_protect_compute_vulnerability_management.md +++ b//wellarchitected/2025-02-25/framework/sec_protect_compute_vulnerability_management.md @@ -34 +34 @@ The [AWS Shared Responsibility Model](https://docs.aws.amazon.com/wellarchitecte -AWS offers a range of services to support vulnerability management programs. [Amazon Inspector](https://aws.amazon.com/inspector/) continuously scans AWS workloads for software vulnerabilities and unintended network access, while [AWS Systems Manager Patch Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager.html) helps manage patching across Amazon EC2 instances. These services can be integrated with [AWS Security Hub](https://aws.amazon.com/security-hub/), a cloud security posture management service that automates AWS security checks, centralizes security alerts, and provides a comprehensive view of an organization's security posture. Furthermore, [Amazon CodeGuru Security](https://aws.amazon.com/codeguru/) uses static code analysis to identify potential issues in Java and Python applications during the development phase. +AWS offers a range of services to support vulnerability management programs. [Amazon Inspector](https://aws.amazon.com/inspector/) continuously scans AWS workloads for software vulnerabilities and unintended network access, while [AWS Systems Manager Patch Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager.html) helps manage patching across Amazon EC2 instances. These services can be integrated with [AWS Security Hub CSPM](https://aws.amazon.com/security-hub/), a cloud security posture management service that automates AWS security checks, centralizes security alerts, and provides a comprehensive view of an organization's security posture. Furthermore, [Amazon CodeGuru Security](https://aws.amazon.com/codeguru/) uses static code analysis to identify potential issues in Java and Python applications during the development phase. @@ -52 +52 @@ By incorporating vulnerability management practices into the software developmen - 7. **Configure a security monitoring service:** Set up a security monitoring service, such as AWS Security Hub, to get a comprehensive view of your security posture across multiple cloud services. The service should collect security findings from various sources and present them in a standardized format for easier prioritization and remediation. + 7. **Configure a security monitoring service:** Set up a security monitoring service, such as AWS Security Hub CSPM, to get a comprehensive view of your security posture across multiple cloud services. The service should collect security findings from various sources and present them in a standardized format for easier prioritization and remediation.