AWS prescriptive-guidance documentation change
Summary
Replaced 'Security Hub CSPM' with 'Security Hub' in compliance evidence pipeline description.
Security assessment
Terminology update without changing security meaning. CSPM (Cloud Security Posture Management) is a feature subset of Security Hub, so this doesn't alter security implications.
Diff
diff --git a/prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/building-automated-evidence-collection.md b/prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/building-automated-evidence-collection.md index 6df0a84a7..4322d8a0b 100644 --- a//prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/building-automated-evidence-collection.md +++ b//prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/building-automated-evidence-collection.md @@ -42 +42 @@ SI-3.14.1 | Amazon Inspector, Systems Manager | Vulnerability findings, patch co -By combining Security Hub CSPM compliance scores, AWS Config conformance pack evaluations, CloudTrail audit logs, and Amazon Inspector vulnerability reports into a centralized Amazon S3 evidence repository in the Security and Log Archive Account, you create a comprehensive, automated evidence pipeline. When your C3PAO arrives, you point them to organized, time-stamped, machine-readable evidence rather than scrambling to produce screenshots and spreadsheets. +By combining Security Hub compliance scores, AWS Config conformance pack evaluations, CloudTrail audit logs, and Amazon Inspector vulnerability reports into a centralized Amazon S3 evidence repository in the Security and Log Archive Account, you create a comprehensive, automated evidence pipeline. When your C3PAO arrives, you point them to organized, time-stamped, machine-readable evidence rather than scrambling to produce screenshots and spreadsheets.