Need help with Dashboaring & Visualisation for Security Hub

0

Hi there,

Im reaching out with a query about Security Hub

Thing is, Im a beginner with Security Hub and our company recently started the project for deploying & tracking the Security findings through AWS Security Hub

Apart from built-in dashboard options, is there any way to extend the dashboarding functionality such as to develop more detailed graphs & tables ? During my research I came across options such as using QuickSight or Elasticsearch for this purpose. But is there any way we can do this within the native functionality provided by Security Hub at the moment

Also, is this the correct next step, after the initial cleanup ? We can also go through the low-hanging fruits (with regards to efforts) and that might help in increasing the score quickly

So if someone can share the responses to my queries, I'd appreciate it greatly

All my googling only turned up articles from the AWS Documentation, which I have already gone through

Thank you for reading the post guys ! Appreciate the support !

1 Answer
0

While AWS Security Hub provides a built-in Summary dashboard with customizable widgets, it does not currently offer extensive native functionality for developing more detailed graphs and tables beyond what is available in the console. The Summary dashboard allows for some customization, such as adding or removing widgets, filtering data, and saving filter sets, but it is limited to the predefined widget types.

For more advanced dashboarding and visualization capabilities, you would indeed need to look at external solutions. Using Amazon QuickSight or Elasticsearch (now known as OpenSearch) are valid options for creating more detailed and customized dashboards based on Security Hub data. These tools can provide more flexibility in terms of data analysis and visualization.

Regarding your next steps after initial cleanup, focusing on low-hanging fruits to increase your security score quickly is a good approach. Here are some suggestions:

  1. Review and address the findings with the highest severity first.
  2. Enable and configure the security standards that are most relevant to your organization's needs.
  3. Set up automation rules to help triage and remediate common security issues.
  4. Leverage integrations with other AWS services and third-party solutions to get a more comprehensive view of your security posture.
  5. Regularly review and update your security controls and policies.

Remember that improving your security posture is an ongoing process. While addressing low-hanging fruits can provide quick wins, it's important to develop a long-term strategy for maintaining and enhancing your security over time.

As you continue to work with Security Hub, make sure to regularly review the findings, insights, and compliance status across your AWS environment. This will help you identify areas that need attention and prioritize your security efforts effectively.
Sources
Working with the Summary dashboard in Security Hub - AWS Security Hub
Enabling and configuring Security Hub - AWS Security Hub
Security Hub concepts - AWS Security Hub

profile picture
answered a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions