AWS prescriptive-guidance documentation change
Summary
Updated 'Security Hub CSPM' to 'Security Hub' in evidence references and vulnerability scanning integration
Security assessment
Purely terminology changes ('CSPM' removal) in audit reporting and Amazon Inspector integration sections. No modifications to security capabilities or vulnerability management processes. Existing security controls and evidence requirements remain unchanged.
Diff
diff --git a/prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/how-aws-services-map-to-cmmc-level-2.md b/prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/how-aws-services-map-to-cmmc-level-2.md index f68bf42aa..53d817523 100644 --- a//prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/how-aws-services-map-to-cmmc-level-2.md +++ b//prescriptive-guidance/latest/cmmc-level-2-compliance-on-aws/how-aws-services-map-to-cmmc-level-2.md @@ -33 +33 @@ Audit log protection | Amazon S3 Object Lock (compliance mode) on log archive bu -Audit review and reporting | [Security Hub ](https://aws.amazon.com/security-hub/)dashboard with compliance scores. CloudWatch Logs Insights for ad-hoc queries. [Athena](https://aws.amazon.com/athena/) for cross-log analysis. | Security Hub CSPM screenshots, [Athena](https://aws.amazon.com/athena/) query history, documented review procedures +Audit review and reporting| [Security Hub ](https://aws.amazon.com/security-hub/)dashboard with compliance scores. CloudWatch Logs Insights for ad-hoc queries. [Athena](https://aws.amazon.com/athena/) for cross-log analysis.| Security Hub screenshots, [Athena](https://aws.amazon.com/athena/) query history, documented review procedures @@ -67 +67 @@ Requirement area | AWS implementation | Assessor evidence -Vulnerability scanning (RA) | [Amazon Inspector](https://aws.amazon.com/inspector/) for continuous scanning of [ Amazon EC2](https://aws.amazon.com/ec2/), containers, and [AWS Lambda](https://aws.amazon.com/lambda/). Amazon Inspector integrates with Security Hub CSPM. | Amazon Inspector findings dashboard, scan coverage report, remediation history +Vulnerability scanning (RA)| [Amazon Inspector](https://aws.amazon.com/inspector/) for continuous scanning of [ Amazon EC2](https://aws.amazon.com/ec2/), containers, and [AWS Lambda](https://aws.amazon.com/lambda/). Amazon Inspector integrates with Security Hub.| Amazon Inspector findings dashboard, scan coverage report, remediation history