AWS Security ChangesHomeSearch

AWS wellarchitected documentation change

Service: wellarchitected · 2025-12-10 · Documentation low

File: wellarchitected/latest/framework/sec_protect_compute_vulnerability_management.md

Summary

Replaced 'AWS Security Hub' with 'AWS Security Hub CSPM' in two sections

Security assessment

This is a terminology update without substantive security content changes. Vulnerability management processes and integration capabilities remain identical, with no new security features or vulnerability mitigations introduced.

Diff

diff --git a/wellarchitected/latest/framework/sec_protect_compute_vulnerability_management.md b/wellarchitected/latest/framework/sec_protect_compute_vulnerability_management.md
index 3c3d102dc..9025b1e63 100644
--- a//wellarchitected/latest/framework/sec_protect_compute_vulnerability_management.md
+++ b//wellarchitected/latest/framework/sec_protect_compute_vulnerability_management.md
@@ -34 +34 @@ The [AWS Shared Responsibility Model](https://docs.aws.amazon.com/wellarchitecte
-AWS offers a range of services to support vulnerability management programs. [Amazon Inspector](https://aws.amazon.com/inspector/) continuously scans AWS workloads for software vulnerabilities and unintended network access, while [AWS Systems Manager Patch Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager.html) helps manage patching across Amazon EC2 instances. These services can be integrated with [AWS Security Hub](https://aws.amazon.com/security-hub/), a cloud security posture management service that automates AWS security checks, centralizes security alerts, and provides a comprehensive view of an organization's security posture. Furthermore, [Amazon CodeGuru Security](https://aws.amazon.com/codeguru/) uses static code analysis to identify potential issues in Java and Python applications during the development phase. 
+AWS offers a range of services to support vulnerability management programs. [Amazon Inspector](https://aws.amazon.com/inspector/) continuously scans AWS workloads for software vulnerabilities and unintended network access, while [AWS Systems Manager Patch Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager.html) helps manage patching across Amazon EC2 instances. These services can be integrated with [AWS Security Hub CSPM](https://aws.amazon.com/security-hub/), a cloud security posture management service that automates AWS security checks, centralizes security alerts, and provides a comprehensive view of an organization's security posture. Furthermore, [Amazon CodeGuru Security](https://aws.amazon.com/codeguru/) uses static code analysis to identify potential issues in Java and Python applications during the development phase. 
@@ -52 +52 @@ By incorporating vulnerability management practices into the software developmen
-  7. **Configure a security monitoring service:** Set up a security monitoring service, such as AWS Security Hub, to get a comprehensive view of your security posture across multiple cloud services. The service should collect security findings from various sources and present them in a standardized format for easier prioritization and remediation. 
+  7. **Configure a security monitoring service:** Set up a security monitoring service, such as AWS Security Hub CSPM, to get a comprehensive view of your security posture across multiple cloud services. The service should collect security findings from various sources and present them in a standardized format for easier prioritization and remediation.