Security Hub - pricing estimation

0

Hello.

I would like to estimate prices for aws security hub, but I have some questions about it:

  1. What means Number Of Security Checks per Account?. How can I calculate that number?
  2. What means Number Of Finding Ingested per Account? How can I calculate that number?
  3. About AWS Config used by Security Hub, how can I calculate the Number of Configuration items recorded and Number of Config rule evaluations?

Thank you.

2 Answers
0

Hi Orlando, Security Hub includes a Free Tier of one month, the easiest way to estimate it's price it's to enable it and check after 15 days the price estimation https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-free-trial.html .

It's important to note that AWS Config isn't included in this free trial, and to estimate it's cost you can check this blog https://aws.amazon.com/blogs/mt/identifying-resources-most-configuration-changes-aws-config/. That said, AWS Config usually isn't a significant cost.

AWS
answered 2 years ago
0

Hi Orlando, I believe your questions are related to estimating Security hub costs using AWS Pricing calculator. Security hub cost is based on the number of Security checks and the number of findings ingested.

  1. A security check is a process that evaluates whether the configuration of an AWS resource complies with a specific security control (Safeguard). Number of security checks depends on many factors that include the compliance standards enabled, number of AWS resources, the changes to the resources and the frequency at which security checks are performed.
  2. Finding is a security event that at is generated either by Security hub based of result of security check performed on your aws resources or security event detected by threat detection services such as AWS GuardDuty. Number of findings ingested depends on the number of security checks, the number of security detection services enabled and the number of security incidents detected by each of the detection service.
  3. You can find the config recorder costs based on usage of the AWS CloudTrail. Refer to blog, https://aws.amazon.com/blogs/mt/estimating-aws-config-recorder-costs-and-usage-using-aws-cloudtrail/ As suggested in previous answer, you can avail one time 30 day Security hub free trial to estimate costs.
answered 3 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions