AWS Security ChangesHomeSearch

AWS wellarchitected documentation change

Service: wellarchitected · 2025-12-10 · Documentation low

File: wellarchitected/latest/security-pillar/sec_protect_compute_vulnerability_management.md

Summary

Replaced 'AWS Security Hub' with 'AWS Security Hub CSPM' in service references to align with product naming

Security assessment

This is a branding/nomenclature update only. Vulnerability management guidance remains identical with no new security controls or vulnerability mitigations introduced.

Diff

diff --git a/wellarchitected/latest/security-pillar/sec_protect_compute_vulnerability_management.md b/wellarchitected/latest/security-pillar/sec_protect_compute_vulnerability_management.md
index 5d94e4227..8a48fe71d 100644
--- a//wellarchitected/latest/security-pillar/sec_protect_compute_vulnerability_management.md
+++ b//wellarchitected/latest/security-pillar/sec_protect_compute_vulnerability_management.md
@@ -34 +34 @@ The [AWS Shared Responsibility Model](https://docs.aws.amazon.com/wellarchitecte
-AWS offers a range of services to support vulnerability management programs. [Amazon Inspector](https://aws.amazon.com/inspector/) continuously scans AWS workloads for software vulnerabilities and unintended network access, while [AWS Systems Manager Patch Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager.html) helps manage patching across Amazon EC2 instances. These services can be integrated with [AWS Security Hub](https://aws.amazon.com/security-hub/), a cloud security posture management service that automates AWS security checks, centralizes security alerts, and provides a comprehensive view of an organization's security posture. Furthermore, [Amazon CodeGuru Security](https://aws.amazon.com/codeguru/) uses static code analysis to identify potential issues in Java and Python applications during the development phase. 
+AWS offers a range of services to support vulnerability management programs. [Amazon Inspector](https://aws.amazon.com/inspector/) continuously scans AWS workloads for software vulnerabilities and unintended network access, while [AWS Systems Manager Patch Manager](https://docs.aws.amazon.com/systems-manager/latest/userguide/patch-manager.html) helps manage patching across Amazon EC2 instances. These services can be integrated with [AWS Security Hub CSPM](https://aws.amazon.com/security-hub/), a cloud security posture management service that automates AWS security checks, centralizes security alerts, and provides a comprehensive view of an organization's security posture. Furthermore, [Amazon CodeGuru Security](https://aws.amazon.com/codeguru/) uses static code analysis to identify potential issues in Java and Python applications during the development phase. 
@@ -52 +52 @@ By incorporating vulnerability management practices into the software developmen
-  7. **Configure a security monitoring service:** Set up a security monitoring service, such as AWS Security Hub, to get a comprehensive view of your security posture across multiple cloud services. The service should collect security findings from various sources and present them in a standardized format for easier prioritization and remediation. 
+  7. **Configure a security monitoring service:** Set up a security monitoring service, such as AWS Security Hub CSPM, to get a comprehensive view of your security posture across multiple cloud services. The service should collect security findings from various sources and present them in a standardized format for easier prioritization and remediation.