Ensure compliance by enabling AWS Security Hub for the AWS Account.
Rule | AWS Security Hub should be enabled for an AWS Account |
Framework | FedRAMP Low Revision 4 |
Severity | ✔ High |
AWS Security Hub - Enablement for FedRAMP Low Revision 4
Rule Description:
This rule ensures that AWS Security Hub is enabled for an AWS Account in compliance with the FedRAMP Low Revision 4 security standard. AWS Security Hub is a comprehensive security service that provides a centralized view of security findings and alerts across different AWS accounts. Enabling AWS Security Hub helps to effectively monitor and manage the security posture of the AWS infrastructure.
Troubleshooting Steps (if any):
If AWS Security Hub is not already enabled, follow the steps below to enable it for your account:
Sign in to the AWS Management Console - Open the AWS Management Console using valid account credentials.
Open the Security Hub service - In the search bar at the top, type "Security Hub" and select the Security Hub service.
Enable Security Hub - Click on the "Enable Security Hub" button to start the service setup process.
Choose a security standard - Select the "FedRAMP Low Revision 4" security standard from the available options.
Configure data sharing options - Review and select the appropriate data sharing options as per your requirements. This includes granting permission to AWS Security Hub to access findings and configuration data from other AWS services.
Enable automatic enabling for new AWS accounts - Consider enabling the option to automatically enable Security Hub for new AWS accounts that are added under the organization or linked accounts.
Review and confirm - Review the settings and configurations, then click on the "Enable Security Hub" button to start enabling the service.
Wait for enablement - It may take a few minutes for AWS Security Hub to finish enabling for your account. Once enabled, you will see the status change to "Enabled" in the Security Hub dashboard.
Review findings and configure integrations - Access the Security Hub dashboard to review findings and configure integrations with other AWS services and third-party tools to streamline your security operations.
Necessary Codes (if any):
No specific codes are needed for enabling AWS Security Hub using the AWS Management Console.
Step-by-Step Guide for Remediation:
Open the AWS Management Console using valid account credentials.
Search and select the "Security Hub" service.
Click on the "Enable Security Hub" button.
Choose the "FedRAMP Low Revision 4" security standard.
Configure the data sharing options as per your requirements.
Consider enabling automatic enabling for new AWS accounts.
Review the settings and configurations, then click on the "Enable Security Hub" button.
Wait for AWS Security Hub to finish enabling for your account.
Access the Security Hub dashboard to review findings and configure integrations with other AWS services and third-party tools.
Following these steps will ensure that AWS Security Hub is enabled for your AWS Account in compliance with the FedRAMP Low Revision 4 security standard.