AWS Security ChangesHomeSearch

AWS security-ir documentation change

Service: security-ir · 2026-02-25 · Documentation low

File: security-ir/latest/userguide/define-containment-preferences.md

Summary

Updated headings to lowercase, improved grammar, and clarified containment authorization process. Changed 'Organization ID' to 'Organizations ID' for accuracy.

Security assessment

Language refinements and terminology corrections without security implications. Describes existing security features but doesn't add new security documentation.

Diff

diff --git a/security-ir/latest/userguide/define-containment-preferences.md b/security-ir/latest/userguide/define-containment-preferences.md
index 118b87390..cfdae256d 100644
--- a//security-ir/latest/userguide/define-containment-preferences.md
+++ b//security-ir/latest/userguide/define-containment-preferences.md
@@ -5 +5 @@
-# Define Containment Action Preferences
+# Define containment action preferences
@@ -11 +11 @@ Containment actions enable Security Incident Response to execute rapid response
-Security Incident Response does not enable containment capabilities by default. You must explicitly authorize containment actions through your containment preferences. 
+Security Incident Response doesn't enable containment capabilities by default. You must explicitly authorize containment actions through your containment preferences. 
@@ -19 +19 @@ To authorize Security Incident Response engineers to perform containment actions
-  * **Approval required** (default): Do not perform proactive containment of any resource without explicit authorization on a case-by-case basis.
+  * **Approval required** (default): Don't perform proactive containment of any resource without explicit authorization on a case-by-case basis.
@@ -34 +34 @@ To define containment preferences:
-     * Your AWS Organization ID or specific account IDs where containment actions should be authorized
+     * Your AWS Organizations ID or specific account IDs where containment actions should be authorized
@@ -40 +40 @@ To define containment preferences:
-  3. AWS Support will work with you to configure your containment preferences. You will need to deploy the necessary AWS CloudFormation StackSet that creates the required IAM roles. AWS Support can provide assistance if needed.
+  3. AWS Support works with you to configure your containment preferences. You must deploy the necessary AWS CloudFormation StackSet that creates the required IAM roles. AWS Support can provide assistance, if needed.
@@ -45 +45 @@ To define containment preferences:
-Once configured, Security Incident Response can execute the authorized containment actions during active security incidents to help protect your environment. 
+After configured, Security Incident Response executes the authorized containment actions during active security incidents to help protect your environment. 
@@ -57 +57 @@ Enable Proactive Response
-Post Deployment of Security Incident Response
+Post deployment of Security Incident Response