Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I am planning to assign a hardware MFA to my organisation root account, what if I loose the hardware MFA? or is there any disadvantage for using hardware MFA? or is there anything I should know?
2
answers
0
votes
341
views
asked 8 months agolg...
What AWS security services will notify me when there is an adversary in my website and its related database (RDS mySQL) hosted on AWS? It is a notification needed for when an adversary in on my...
3
answers
0
votes
262
views
asked 8 months agolg...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
270
views
asked 8 months agolg...
It seems its my turn this morning for their long-term dormant free-tier account getting hacked. I received two emails that my root emailid was changed and so was the password. Then I get an email that...
1
answers
0
votes
220
views
asked 8 months agolg...
Here's my setup. I have four accounts - a management account and three member accounts for security, dev, and production. In the process of setting up my organization I've configured organization and...
1
answers
0
votes
480
views
asked 8 months agolg...
Hi All,
Can we send the AWS Security hub events (from our account) to the security lake of a different organization/vendors account? seems it is a direct link between the security hub to...
1
answers
0
votes
307
views
asked 8 months agolg...
I enabled SecurityHub by enrolling one of the GuardDuty controls in ControlTower.
Now I'd like to enable some of the other SecurityHub standards but I'm worried that it's going to create a drift for...
1
answers
1
votes
433
views
asked 9 months agolg...
Hello,
I'm trying to prevent certain tags from being edited unless they are part of an admin group or a lambda function. I've used an scp to be able to do this as far as users, however, it prevents...
2
answers
0
votes
335
views
asked 9 months agolg...
I have security hub running from a central account in all the regions I use across all my accounts. All the data is being pulled in to a single hub as I wanted. However, I am not getting a Score nor...
3
answers
0
votes
557
views
asked 9 months agolg...
Is it possible to filter the emails generated by **aws-controltower-AggregateSecurityNotifications**? We only want to receive the resources that are not compliant instead of getting all...
1
answers
0
votes
306
views
asked 9 months agolg...
I have an Appsync API that is set up as the origin of a CloudFront distribution (so that we can have a custom domain name, among other things).
This origin is set as the default (*) behaviour for the...
1
answers
0
votes
421
views
asked 9 months agolg...
When applying default settings using Simple AD, we have two alerts flagged:
- Critical - EC2.19 - Security groups should not allow unrestricted access to ports with high risk
- High - EC2.18 -...
1
answers
0
votes
502
views
asked 10 months agolg...