AWS Security ChangesHomeSearch

AWS securityhub documentation change

Service: securityhub · 2026-05-16 · Documentation medium

File: securityhub/latest/userguide/standards-reference-nist-800-53.md

Summary

Added BedrockAgentCore resource types, SageMaker FeatureGroup resource, and references to new controls for NIST alignment

Security assessment

Expands NIST standard coverage documentation for new resource types and controls. Enhances compliance documentation without addressing specific security vulnerabilities.

Diff

diff --git a/securityhub/latest/userguide/standards-reference-nist-800-53.md b/securityhub/latest/userguide/standards-reference-nist-800-53.md
index 41b64192c..b0667ce38 100644
--- a//securityhub/latest/userguide/standards-reference-nist-800-53.md
+++ b//securityhub/latest/userguide/standards-reference-nist-800-53.md
@@ -38,0 +39 @@ AWS Backup |  `AWS::Backup::RecoveryPoint`
+Amazon Bedrock AgentCore |  `AWS::BedrockAgentCore::Gateway`, `AWS::BedrockAgentCore::Memory`  
@@ -74 +75 @@ Amazon EC2 Systems Manager (SSM)  |  `AWS::SSM::AssociationCompliance`, `AWS::SS
-Amazon SageMaker AI |  `AWS::SageMaker::NotebookInstance`  
+Amazon SageMaker AI |  `AWS::SageMaker::FeatureGroup`, `AWS::SageMaker::NotebookInstance`  
@@ -118,0 +120,4 @@ The following list specifies the controls that support NIST SP 800-53 Revision 5
+  * [[BedrockAgentCore.3] Bedrock AgentCore Memory should be encrypted with customer managed AWS KMS keys](./bedrockagentcore-controls.html#bedrockagentcore-3)
+
+  * [[BedrockAgentCore.4] Bedrock AgentCore Gateway should be encrypted with customer managed AWS KMS keys](./bedrockagentcore-controls.html#bedrockagentcore-4)
+
@@ -628,0 +634,2 @@ The following list specifies the controls that support NIST SP 800-53 Revision 5
+  * [[SageMaker.18] SageMaker feature group online stores with standard storage should be encrypted with AWS KMS keys](./sagemaker-controls.html#sagemaker-18)
+