Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi, I'm enabling server access logging on all S3 buckets, as per SecurityHub recommendations. But now it also wants access logging on the access logging buckets and it warns (very good) that source...
3
answers
3
votes
1737
views
asked 2 years agolg...
(resolved) Why do SecurityHub detection results show both PASSED and FAILED for the same resource?lg...
The SecurityHub detection results have the following titles:
`4.3 Ensure the default security group of every VPC restricts all traffic`
In response, we have removed the default security group...
Accepted AnswerAWS Security Hub
2
answers
0
votes
1531
views
asked 2 years agolg...
Question regarding Security Hub [EC2.10] This control checks whether a service endpoint for Amazon EC2 is created for each VPC. The control fails if a VPC does not have a VPC endpoint created for the...
1
answers
0
votes
1607
views
asked 2 years agolg...
Hi,
Whilst I am able to run and complete a sample app in AWS CDK, When trying to follow the blog post on [Security Hub...
2
answers
0
votes
608
views
asked 2 years agolg...
Hi,
I am working on resolving various AWS CIS Benchmarks in Security Hub and I am wondering if there is any way to re-run or manually trigger to re-check the rule if compliance is met. I've updated...
2
answers
0
votes
1065
views
asked 2 years agolg...
Hi, struggling with consolidating logs. I want to enable server access logging in S3 as well as VPC flow logging. Both need to have a logging bucket per region. That is not very scalable. Can't this...
1
answers
0
votes
860
views
asked 2 years agolg...
Hi,
Enabling SecurityHub on my accounts. Thus asked to enable AWS Config on all accounts in all regions. Found the AWSConfig StackSet that does this automatically. Great automation, but is it...
1
answers
0
votes
329
views
asked 2 years agolg...
Hi,
New to SecurityHub. Using AWS Organizations (not Control Tower) and made a new 'security-tooling' account as recommended in best practices to act as Master account for SecurityHub. I then...
1
answers
0
votes
1507
views
asked 2 years agolg...
Our website hosted on AWS when searched by Google indicates a "This site has been hacked" message. I have tried to add a DNS text entry and install an HTML provided by Google but neither appear to be...
1
answers
0
votes
252
views
asked 2 years agolg...
Hello
Checking out the Security Hub findings, we have multiple reports of a CRITICAL issue with the description Security Hub
*RDS.1 RDS snapshot should be private * but the snapshots that are targeted...
2
answers
3
votes
640
views
asked 2 years agolg...
It’s not In the dashboard and I have searched it in the new search bar for cases and it’s not with the resolved cases nothing. A red box appears and it says ‘invalid Case ID’
1
answers
0
votes
293
views
asked 2 years agolg...
HI there, is it good to find out these questions before conducting a IT security assessment on the cloud?
What is the type of cloud services that is required to be tested
a. Infra as a Service –...
1
answers
0
votes
260
views
asked 2 years agolg...