Enable AWS Security Hub Rule
Ensure that AWS Security Hub is enabled for an AWS Account to meet compliance standards.
| Rule | AWS Security Hub should be enabled for an AWS Account |
| Framework | RBI Cyber Security Framework |
| Severity | ✔ High |
AWS Security Hub for RBI Cyber Security Framework
Rule Description
The AWS Security Hub should be enabled for an AWS Account to comply with the RBI (Reserve Bank of India) Cyber Security Framework. Security Hub is a comprehensive security service provided by AWS that enables central management of security findings across multiple AWS accounts and services. It allows security teams to gain insights and take necessary actions to address security risks and vulnerabilities.
Enabling Security Hub ensures that the AWS Account is continuously monitored for security issues, allowing for timely detection and response to potential threats. This rule helps in compliance with the RBI Cyber Security Framework, which emphasizes the importance of maintaining robust security practices to protect sensitive financial data.
Remediation Steps
To enable AWS Security Hub for an AWS Account to comply with the RBI Cyber Security Framework, follow the steps below:
- 1.Sign in to the AWS Management Console using the account's administrative credentials.
- 2.Open the AWS Security Hub console.
- 3.Choose the region where you want to enable Security Hub (e.g., "US East (N. Virginia)").
- 4.Click on the "Enable Security Hub" button.
Troubleshooting Steps (if applicable)
In case you encounter any issues while enabling AWS Security Hub, follow these troubleshooting steps:
- 1.Ensure that you have the necessary permissions to enable Security Hub. You should be assigned the
policy or have equivalent permissions.SecurityHubFullAccess - 2.Check if the AWS Region you selected supports Security Hub. Not all regions might have this service available.
- 3.Verify that your account is not already enabled for Security Hub in the selected region. You can check this by navigating to the Security Hub service in the AWS Management Console.
Necessary Code (if applicable)
No code is required to enable AWS Security Hub. The process can be completed through the AWS Management Console.
CLI Command (if applicable)
Enabling AWS Security Hub via the AWS Command Line Interface (CLI) can be done using the following command:
aws securityhub enable-security-hub --region <region-name>
Replace
<region-name>us-east-1Conclusion
By enabling AWS Security Hub for an AWS Account, you ensure compliance with the RBI Cyber Security Framework. Security Hub provides a unified view of security findings, enabling proactive monitoring and remediation of security issues. Following the detailed steps mentioned above will help you enable Security Hub seamlessly, ensuring the security of your AWS environment.