Security Hub

• Security Hub provides you with a comprehensive view of your security state in AWS and helps you check your environment against security industry standards and best practices.

• Security Hub collects security data from across AWS accounts, services, and supported third-party partner products and helps you analyse your security trends and identify the highest priority security issues.

Using Organizations to manage accounts

• To help automate and streamline management of accounts, Security Hub strongly recommends that you enable Organizations.

• If you have Organizations enabled, then Security Hub automatically detects new accounts as they are added to your organization.

• After you set up your organization, your organization management account designates the Security Hub administrator account.

Enabling and configuring Config

• Security Hub uses service-linked AWS Config rules to perform most of its security checks for controls.

• Security Hub does not manage Config for you.

  • If you already have Config enabled, you can continue to configure its settings through the Config console or APIs.