AWS wellarchitected documentation change
Summary
Replaced generic 'Security Hub' references with 'Security Hub CSPM' in compliance and configuration management contexts
Security assessment
Emphasizes the use of CSPM for compliance automation and evidence collection, clarifying security-focused capabilities without indicating a resolved security issue.
Diff
diff --git a/wellarchitected/latest/healthcare-industry-lens/operate.md b/wellarchitected/latest/healthcare-industry-lens/operate.md index 4700e2981..739398f13 100644 --- a//wellarchitected/latest/healthcare-industry-lens/operate.md +++ b//wellarchitected/latest/healthcare-industry-lens/operate.md @@ -34 +34 @@ For each configuration you specify, test the controls you put in place. Use AWS -Many customers will use multiple AWS accounts (such as development, test, and prod, or department-specific accounts). Configuration management, while important, is not the only set of technical controls you may require. For example, you may combine your configuration posture with additional findings, from third-party solutions or AWS security services like Amazon GuardDuty. Technical controls and findings should be grouped together as evidence using a solution such as AWS Security Hub. +Many customers will use multiple AWS accounts (such as development, test, and prod, or department-specific accounts). Configuration management, while important, is not the only set of technical controls you may require. For example, you may combine your configuration posture with additional findings, from third-party solutions or AWS security services like Amazon GuardDuty. Technical controls and findings should be grouped together as evidence using a solution such as AWS Security Hub CSPM. @@ -40 +40 @@ Simplify maintaining a complete view of your compliance posture by automatically -AWS Audit Manager helps automate evidence collection from a variety of sources within AWS, including Security Hub and Config. Bundling multiple pieces of evidence together under a single policy makes it easier to demonstrate compliance with a specific framework or regulation. You can use Audit Manager’s prebuilt frameworks, and you can manually specify a list of controls and policies that are important to your organization. +AWS Audit Manager helps automate evidence collection from a variety of sources within AWS, including Security Hub CSPM and Config. Bundling multiple pieces of evidence together under a single policy makes it easier to demonstrate compliance with a specific framework or regulation. You can use Audit Manager’s prebuilt frameworks, and you can manually specify a list of controls and policies that are important to your organization. @@ -44 +44 @@ AWS Audit Manager helps automate evidence collection from a variety of sources w -The creation of artifacts that document the compliance posture of a cloud environment should be automated. Use services such as AWS Config, AWS Audit Manager, and AWS Security Hub to automatically collect and report the compliance state of a cloud environment. +The creation of artifacts that document the compliance posture of a cloud environment should be automated. Use services such as AWS Config, AWS Audit Manager, and AWS Security Hub CSPM to automatically collect and report the compliance state of a cloud environment. @@ -57 +57 @@ In developing automated remediations, there are several steps you can follow: - 1. **Specify controls:** Define the evidence and configuration you want to track. Use AWS Config and Security Hub to identify and surface findings. + 1. **Specify controls:** Define the evidence and configuration you want to track. Use AWS Config and Security Hub CSPM to identify and surface findings.