Amazon Security Hub
AWS Security Hub is a cloud security posture management service that provides a comprehensive view of your security state across AWS accounts. It aggregates, organizes, and prioritizes security findings from multiple AWS services and third-party tools, enabling centralized security monitoring, compliance checking, and automated remediation workflows.
APIs
AWS Security Hub API
The AWS Security Hub API provides programmatic access to manage centralized security findings across your AWS environment. It enables developers to import and manage security fi...
Collections
Amazon Security Hub
POSTMANAmazon Security Hub
OPENArazzo Workflows
Amazon Security Hub Bootstrap Posture Baseline
Enable Security Hub, confirm its standards, and capture an initial findings baseline.
ARAZZOAmazon Security Hub Enable Hub and Review Standards
Enable Security Hub for the account and review which security standards are now available.
ARAZZOAmazon Security Hub Onboard Product Integration
Enable a partner product integration and verify its findings flow into Security Hub.
ARAZZOAmazon Security Hub Review Insight Findings
List a saved insight and drill into the findings behind it.
ARAZZOAmazon Security Hub Standards Compliance Audit
List the enabled security standards and pull the failing compliance findings behind them.
ARAZZOAmazon Security Hub Triage and Update Findings
Retrieve high-severity findings and update them by re-importing the modified records.
ARAZZOPricing Plans
Rate Limits
FinOps
Amazon Security Hub Finops
FINOPSFeatures
Aggregate security findings from across multiple AWS accounts and regions into a single pane of glass.
Standardized JSON format for all security findings enabling consistent analysis and automation.
Automated compliance checks against CIS AWS Foundations, PCI DSS, NIST, SOC 2, and AWS Foundational Security Best Practices.
Ingest findings from 80+ third-party security partners including CrowdStrike, Palo Alto Networks, and Splunk.
Trigger automated remediation via Amazon EventBridge and AWS Security Hub automated response and remediation.
Correlated views of security findings to highlight areas needing attention.
Create custom actions to send findings to ticketing, chat, and SOAR platforms.
Aggregate findings across multiple AWS regions into a designated aggregation region.
Use Cases
Continuously monitor your AWS environment for security misconfigurations and compliance gaps.
Automate compliance checks and generate reports for CIS, PCI DSS, NIST, and other frameworks.
Centralize security monitoring across dozens or hundreds of AWS accounts in an organization.
Aggregate findings from GuardDuty, Inspector, Macie, and third-party tools in one place.
Trigger automated remediation workflows when critical findings are detected.
Replace multiple point solutions with centralized finding aggregation and normalized data.