Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cloud Security

AWS Announces General Availability of Security Hub

Amazon Web Services (AWS) on Tuesday announced the general availability of Security Hub, a service that aggregates and prioritizes alerts from AWS and many third-party security tools.

Amazon Web Services (AWS) on Tuesday announced the general availability of Security Hub, a service that aggregates and prioritizes alerts from AWS and many third-party security tools.

Security Hub was unveiled at the AWS re:Invent 2018 conference in November 2018, when it was made available in preview release, and its general availability was announced at AWS’s re:Inforce cybersecurity conference, which is taking place these days in Boston.AWS launches Security Hub

AWS Security Hub, which users can enable in the AWS Management Console, provides a centralized, comprehensive view of their security and compliance status. The service aggregates data from AWS services such as Amazon GuardDuty, Macie and Inspector, along with data provided by tools from 30 third-party vendors.

The cybersecurity firms whose products have been integrated with the new service include CrowdStrike, Twistlock, Tenable, Armor, McAfee, Splunk, Check Point, Palo Alto Networks, Alert Logic, Qualys, Sophos, Trend Micro, Sumo Logic and Fortinet. AWS also provides a Security Hub API that users can leverage to develop their own integrations.

The data collected by Security Hub should help organizations identify and prioritize issues, consolidating them into tables and graphs that can make it easier for security teams to quickly take action.

According to AWS, Security Hub now includes several new features compared to the version unveiled last year. This includes all findings being automatically sent to Amazon CloudWatch Events, CloudFormation support, tag-based access control and cost allocation, and improved actionability for compliance findings.

Security Hub is available in 15 regions across the Americas, Europe and Asia Pacific, and users can opt for a free 30-day trial to test its features and capabilities. AWS has pointed out that data collected by the new service will not be transferred outside the region where it was generated.

Brandon West, who leads the AWS Developer Evangelist team for the Americas, has published a blog post describing the steps for getting started with Security Hub, integrations, and custom actions.

“As more compliance standards become available this year, I expect it will become a standard tool in many toolboxes,” West noted.

Related: AWS Provides Secure Access to Internal Assets With Amazon WorkLink

Related: Amazon Introduces AWS Security Specialty Certification Exam

Related: AWS Adds New Feature for Preventing Data Leaks

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Application Security

Many developers and security people admit to having experienced a breach effected through compromised API credentials.

Cloud Security

Orca Security published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services.

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Cloud Security

Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.

Cloud Security

Cloud Disaster Recovery - Ingredients for a Recipe that Saves Money and Offers a Safe, More Secure Situation with Greater Accessibility