Posted On: Mar 17, 2021

Amazon Security Hub has released 19 new controls for its Foundational Security Best Practice standard. These controls conduct fully automatic checks against security best practices for Amazon API Gateway (APIGateway.1), Amazon DynamoDB (DynamoDB.1-3), Amazon Elastic Compute Cloud (EC2.9-10), Amazon Elastic File System (EFS.2), Amazon Elasticsearch Service (ES.2), Amazon RDS (RDS.9), Amazon Redshift (RedShift.1-3,6), Amazon Simple Notification System (SNS.1), Amazon Elastic Load Balancing (ELB.3-6), and Amazon Key Management Service (KMS.3). If you enabled the Amazon Foundational Security Best Practices standard in an account and configured Security Hub to automatically enable new controls, these controls are enabled by default.

Available globally, Amazon Security Hub is designed to give you a comprehensive view of your security posture across your Amazon Web Services accounts. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple services in the China Regions, such as Amazon Systems Manager Patch Manager, Amazon IAM Access Analyzer, and Amazon Partner solutions. You can also continuously monitor your environment using automated security checks based on standards, such as Amazon Foundational Security Best Practice, the Center for Internet Security (CIS) Amazon Foundations Benchmark, and the Payment Card Industry Data Security Standard. You can take action on these findings by using Amazon CloudWatch Event rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), and incident management tools or to custom remediation playbooks.

You can enable your 30-day free trial of Amazon Security Hub in the Amazon Web Services China (Ningxia) Region operated by NWCD with a single-click in the Amazon Management console. Security Hub also available in the Amazon Web Services China (Beijing) Region operated by Sinnet. To learn more about Amazon Security Hub capabilities, see the Amazon Security Hub documentation, and to start your 30-day free trial see the Amazon Security Hub free trial page.