Security Hub with AWS Config

0

As a beginner for Security Hub, I see Security Hub Security Standard checks need to enable AWS Config. So which resources I need to record for Security Standard checks to work properly. For example I enable AWS Foundational Security Best Practices.

asked 2 months ago349 views
2 Answers
3
Accepted Answer

Hello.

I think there will be no problem if you record the resources listed in the document below.
https://docs.aws.amazon.com/securityhub/latest/userguide/controls-config-resources.html#securityhub-standards-fsbp-config-resources

profile picture
EXPERT
answered 2 months ago
profile picture
EXPERT
reviewed 2 months ago
profile pictureAWS
EXPERT
reviewed 2 months ago
  • Oh, I haven't read that yet. Thank you so much

1

To ensure that Security Hub Security Standard checks, such as the AWS Foundational Security Best Practices (FSBP), work properly, you need to enable AWS Config to record the necessary resources. Here’s how you can proceed:

Review the AWS FSBP Documentation:

  • Refer to the AWS FSBP Documentation. This documentation contains detailed information about the services monitored by each control within the AWS FSBP. Each control starts with a Service Name.

Enable Relevant Services:

  • Identify all the services listed in the AWS FSBP documentation.
  • Enable these services in each region as part of your Config Resource Types in the AWS Config recording settings.

Additional Resources:

Before enabling AWS Config, review the following prerequisites and setup guidelines:

By following these steps and enabling the necessary resources, you can ensure that the Security Hub Security Standard checks function correctly.

AWS
answered 2 months ago
profile picture
EXPERT
reviewed 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions