AWS wellarchitected documentation change
Summary
Updated incident response guidance to reference Security Hub CSPM instead of generic Security Hub
Security assessment
Highlights CSPM's role in automated security monitoring and incident response workflows but does not disclose or mitigate a specific security vulnerability.
Diff
diff --git a/wellarchitected/latest/hybrid-networking-lens/security-pillar.md b/wellarchitected/latest/hybrid-networking-lens/security-pillar.md index 474cb5456..be17144a5 100644 --- a//wellarchitected/latest/hybrid-networking-lens/security-pillar.md +++ b//wellarchitected/latest/hybrid-networking-lens/security-pillar.md @@ -157 +157 @@ If ransomware is spreading, quickly isolate your AWS hybrid network environment -Automate incident response rather than leveraging manual processes to monitor your security posture and manually react to events. Automating responses improve manual processes, reduce containment time, and prevent alert fatigue by the incident response teams, leaving your human processes to handle the sensitive and unique incidents. Leverage AWS Security Hub to automate and detect security incidents. Security Hub continuously monitors your environment using automated checks and you can take action on the security findings with event based automation tools such as AWS Lambda, AWS Step Functions, and AWS Config Rules. The automated response approach should be tested in your non-production environment before deployment in your production accounts. +Automate incident response rather than leveraging manual processes to monitor your security posture and manually react to events. Automating responses improve manual processes, reduce containment time, and prevent alert fatigue by the incident response teams, leaving your human processes to handle the sensitive and unique incidents. Leverage AWS Security Hub CSPM to automate and detect security incidents. Security Hub CSPM continuously monitors your environment using automated checks and you can take action on the security findings with event based automation tools such as AWS Lambda, AWS Step Functions, and AWS Config Rules. The automated response approach should be tested in your non-production environment before deployment in your production accounts.