Skip to content

All Content tagged with AWS Security Hub

AWS Security Hub is a cloud security posture management service that performs security best practice checks, aggregates alerts, and enables automated remediation.

Content language: English

Select tags to filter
Sort by most recent
222 results
Hi all, I’ve been using AWS Audit Manager to assess an AWS Account against ISO27001 annex A compliance. I have also AWS Config and AWS Security Hub enabled. As suggested in https://docs.aws.amazon...
1
answers
0
votes
30
views
asked 2 days ago
I am managing 30 AWS accounts, each with approximately 15 IAM users and 15 IAM roles. My goal is to identify unused IAM users and roles across these accounts. I understand that IAM Access Analyzer ca...
1
answers
0
votes
21
views
asked 9 days ago
Hi all, I want to do an ISO27001 (Annex A) assessment of the aws services running within an account to check their compliance against this standard. I guess enabling aws config and aws security hub w...
1
answers
0
votes
72
views
asked 11 days ago
Even after configuring the necessary options for the environment to use the ec2 launch template, such as disabled IMDSv1 and gp3 volume type, the environment still uses the AutoScaling LaunchConfigura...
2
answers
0
votes
33
views
asked a month ago
In a large environment that is highly secure, how do you deal with Control Tower and Security Hub for the Security OU accounts. ( audit and log archive) In many environments Risk teams require complia...
2
answers
0
votes
127
views
asked 2 months ago
VM/serverless with cleartext SSH private keys that can be used to access VMs with high privileges creating vulnerability, please help me with a solution to resolve the issue
2
answers
0
votes
36
views
asked 2 months ago
Join us live on [Twitch.tv](https://bit.ly/4anH9WR) on May 20th, 2025 @ 2pm Pacific / 5pm Eastern to hear our hosts explain Securing the Cloud with AWS Central Root Access Management
For compliance and security, we need to use Hardware MFA devices as specified by IAM.6, "Hardware MFA should be enabled for the root user". The description reads: > This AWS control checks whether you...
1
answers
0
votes
66
views
asked 2 months ago
I'm trying to test AWS GuardDuty’s detection capability for "CredentialAccess:InstanceCredentialExfiltration" but haven't been able to trigger an alert. Here’s what I did: Setup: 1.Launched an EC2 i...
1
answers
0
votes
71
views
asked 3 months ago
Hi all I deployed my landing zone through LZA - https://aws.amazon.com/solutions/implementations/landing-zone-accelerator-on-aws/. Now I want to configure Security Hub central configuration policy, h...
1
answers
0
votes
90
views
asked 3 months ago
Hi all I set up NIST SP 800-53 Rev. 5 standard in my AWS Security Hub. I can see a control saying "[NetworkFirewall.6] Stateless Network Firewall rule group should not be empty". If I don't have any ...
1
answers
0
votes
63
views
asked 4 months ago
Hello, ## Environment Overview * The organization has around 50 accounts. * Three OUs (Organizational Units) apply different Security Hub standards. ## Issues Encountered ### When a new account is c...
1
answers
0
votes
68
views
asked 4 months ago
  • 1
  • 2
  • 3
  • 4
  • 5
  • •••
  • 19
  • 12 / page