Whats are the steps required for customer to enable Security Hub while setting up multi account

0

Hi,

My customer is working on going multi account and they want to disable Security Hub on their payer account and move to a centralized Security account. Whats the things to watch for / steps to be taken to get this going?

Thanks!

질문됨 2달 전124회 조회
2개 답변
1
수락된 답변

When moving from a single account Security hub to a multi account, the recommendation would be to Integrate Security hub with AWS Organizations. This would help automate and streamline the management of accounts. You can integrate with Organizations if you have more than one AWS account that uses Security Hub.

The two ways to enable AWS Security Hub is by integrating with AWS Organizations or manually.

  1. AWS Organizations: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html#securityhub-orgs-setup-overview
  2. Manually: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html#securityhub-manual-setup-overview

In case you customer is choosing the manual route they can disable Security Hub from Payer account and enable it in the Security account. Please note the following before disabling The following occurs when you disable Security Hub for an account:

  1. No new findings are process for the account.
  2. After 90 days, your existing findings and insights and any Security Hub configuration settings are deleted and cannot be recovered.
  3. If you want to save your existing findings, you must export them before you disable Security Hub. For more information, see Effect of account actions on Security Hub data.Any enabled standards and controls are disabled. https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-disable.html
Ramya
답변함 2달 전
profile picture
전문가
검토됨 2달 전
0

Great! Thanks Ramya

답변함 2달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인