Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello team.
I am enabling controls in Control Tower for OU that contains Shared Account (Log and Audit) and others OUs.
I have enabled this control: Disallow Actions as a Root User, but when the...
1
answers
0
votes
439
views
asked 8 months agolg...
Hi!
Is it possible to hide or supressed specific items automatically on Security Hub with tags? We have some resources based on environment tags, that I wouldn't like to see this finding, like a RDS...
3
answers
0
votes
335
views
asked 8 months agolg...
I am planning to assign a hardware MFA to my organisation root account, what if I loose the hardware MFA? or is there any disadvantage for using hardware MFA? or is there anything I should know?
2
answers
0
votes
365
views
asked 9 months agolg...
What AWS security services will notify me when there is an adversary in my website and its related database (RDS mySQL) hosted on AWS? It is a notification needed for when an adversary in on my...
3
answers
0
votes
278
views
asked 9 months agolg...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
298
views
asked 9 months agolg...
It seems its my turn this morning for their long-term dormant free-tier account getting hacked. I received two emails that my root emailid was changed and so was the password. Then I get an email that...
1
answers
0
votes
240
views
asked 9 months agolg...
Here's my setup. I have four accounts - a management account and three member accounts for security, dev, and production. In the process of setting up my organization I've configured organization and...
1
answers
0
votes
528
views
asked 9 months agolg...
Hi All,
Can we send the AWS Security hub events (from our account) to the security lake of a different organization/vendors account? seems it is a direct link between the security hub to...
1
answers
0
votes
336
views
asked 9 months agolg...
I enabled SecurityHub by enrolling one of the GuardDuty controls in ControlTower.
Now I'd like to enable some of the other SecurityHub standards but I'm worried that it's going to create a drift for...
1
answers
1
votes
475
views
asked 10 months agolg...
Hello,
I'm trying to prevent certain tags from being edited unless they are part of an admin group or a lambda function. I've used an scp to be able to do this as far as users, however, it prevents...
2
answers
0
votes
358
views
asked 10 months agolg...
I have security hub running from a central account in all the regions I use across all my accounts. All the data is being pulled in to a single hub as I wanted. However, I am not getting a Score nor...
3
answers
0
votes
604
views
asked 10 months agolg...
Is it possible to filter the emails generated by **aws-controltower-AggregateSecurityNotifications**? We only want to receive the resources that are not compliant instead of getting all...
1
answers
0
votes
334
views
asked 10 months agolg...