Login

Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Enable AWS Security Hub Rule

This rule mandates the activation of AWS Security Hub for an AWS Account.

RuleAWS Security Hub should be enabled for an AWS Account
FrameworkNIST 800-171 Revision 2
Severity
High

Rule Description:

This rule ensures that AWS Security Hub is enabled for an AWS Account and configured to comply with the NIST 800-171 Revision 2 security framework. Enabling AWS Security Hub allows for centralized visibility and management of security findings across multiple AWS services.

Troubleshooting Steps:

If AWS Security Hub is not enabled or configured correctly, follow these troubleshooting steps to remediate the issue:

  2. 1.

    Verify Account Permissions:

    • Make sure that you have the necessary permissions to enable Security Hub. You should have the 
      SecurityHubFullAccess
      or 
      SecurityHubReadOnlyAccess
      IAM policy attached to your IAM user or role.
  4. 2.

    Check Security Hub Status:

    • Verify if Security Hub is already enabled for the AWS Account. You can check the status by logging in to the AWS Management Console and navigating to the Security Hub service.
    • If Security Hub is not enabled, proceed to the next step.
  6. 3.

    Enable Security Hub:

    • Open the AWS Management Console and navigate to the Security Hub service.
    • Click on the "Get Started" button to start the setup process.
    • Select the AWS Account for which you want to enable Security Hub.
    • Configure the settings according to your requirements, ensuring that the NIST 800-171 Revision 2 security framework is selected.
    • Click on the "Enable Security Hub" button to enable Security Hub for the AWS Account.
  8. 4.

    Verify Framework Compliance:

    • Once Security Hub is enabled, verify if it is compliant with the NIST 800-171 Revision 2 security framework. Ensure that the necessary standards and controls are configured correctly.

Necessary Codes:

No specific codes are required for this rule. Enabling Security Hub and configuring the NIST 800-171 Revision 2 security framework can be done through the AWS Management Console.

Step-by-Step Guide for Remediation:

Follow these steps to enable AWS Security Hub and configure it to comply with the NIST 800-171 Revision 2 security framework:

  2. 1.

    Log in to the AWS Management Console.

  4. 2.

    Navigate to the Security Hub service.

  6. 3.

    If Security Hub is already enabled for the AWS Account, verify that it is compliant with the NIST 800-171 Revision 2 security framework. If not, proceed to the next step.

  8. 4.

    Click on the "Get Started" button to start the setup process.

  10. 5.

    Select the AWS Account for which you want to enable Security Hub.

  12. 6.

    Configure the settings according to your requirements, ensuring that the NIST 800-171 Revision 2 security framework is selected.

  14. 7.

    Click on the "Enable Security Hub" button to enable Security Hub for the AWS Account.

  16. 8.

    Once enabled, verify if Security Hub is compliant with the NIST 800-171 Revision 2 security framework. Review the standards and controls to ensure they are correctly configured.

By following these steps, you can enable AWS Security Hub and ensure compliance with the NIST 800-171 Revision 2 security framework for your AWS Account.

Is your System Free of Underlying Vulnerabilities?
Find Out Now