Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I am planning to assign a hardware MFA to my organisation root account, what if I loose the hardware MFA? or is there any disadvantage for using hardware MFA? or is there anything I should know?
2
answers
0
votes
110
views
asked 12 days agolg...
What AWS security services will notify me when there is an adversary in my website and its related database (RDS mySQL) hosted on AWS? It is a notification needed for when an adversary in on my...
3
answers
0
votes
103
views
asked 13 days agolg...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
38
views
asked 14 days agolg...
It seems its my turn this morning for their long-term dormant free-tier account getting hacked. I received two emails that my root emailid was changed and so was the password. Then I get an email that...
1
answers
0
votes
62
views
asked 15 days agolg...
Here's my setup. I have four accounts - a management account and three member accounts for security, dev, and production. In the process of setting up my organization I've configured organization and...
1
answers
0
votes
107
views
asked 15 days agolg...
Hi All,
Can we send the AWS Security hub events (from our account) to the security lake of a different organization/vendors account? seems it is a direct link between the security hub to...
0
answers
0
votes
53
views
asked 21 days agolg...
I enabled SecurityHub by enrolling one of the GuardDuty controls in ControlTower.
Now I'd like to enable some of the other SecurityHub standards but I'm worried that it's going to create a drift for...
1
answers
1
votes
115
views
asked a month agolg...
Hello,
I'm trying to prevent certain tags from being edited unless they are part of an admin group or a lambda function. I've used an scp to be able to do this as far as users, however, it prevents...
2
answers
0
votes
118
views
asked 2 months agolg...
I have security hub running from a central account in all the regions I use across all my accounts. All the data is being pulled in to a single hub as I wanted. However, I am not getting a Score nor...
3
answers
0
votes
167
views
asked 2 months agolg...
Is it possible to filter the emails generated by **aws-controltower-AggregateSecurityNotifications**? We only want to receive the resources that are not compliant instead of getting all...
1
answers
0
votes
92
views
asked 2 months agolg...
I have an Appsync API that is set up as the origin of a CloudFront distribution (so that we can have a custom domain name, among other things).
This origin is set as the default (*) behaviour for the...
1
answers
0
votes
84
views
asked 2 months agolg...
When applying default settings using Simple AD, we have two alerts flagged:
- Critical - EC2.19 - Security groups should not allow unrestricted access to ports with high risk
- High - EC2.18 -...
1
answers
0
votes
120
views
asked 2 months agolg...