Tune and measure tools

After you establish specialized teams for different security domains, align the teams with each other. AWS Security Hub CSPM can help you achieve this. Security Hub CSPM provides a centralized, unified dashboard to monitor progress against frameworks. It also integrates with AWS security services any many third-party tools.

The National Institute of Standards and Technology (NIST) Cybersecurity Framework on the NIST website is comprised of five functions: identify, protect, detect, respond, and recover. The following image shows how you can use different AWS services during each function and then configure those services to send their findings to Security Hub CSPM for consolidated reporting. If you choose to use other tools, you can use the Security Hub CSPM API, AWS Command Line Interface (AWS CLI), and AWS Security Finding Format (ASFF) to create custom integrations. For more information about Security Hub CSPM integrations with other services, see Product integrations in AWS Security Hub CSPM in the Security Hub CSPM documentation.

Security tools that integrate with AWS Security Hub CSPM

Security Hub CSPM integrates with all of these services and tools and provides the following:

Provides a unified dashboard that shows updates and helps teams to iterate in place
Automatically integrates with AWS security services, such as Amazon Macie, Amazon GuardDuty , and Amazon Detective
Supports integration with third-party tools, such as Prowler and cfn_nag
Supports custom integrations with tools, such as Security Hub CSPM API, AWS CLI, and the AWS Security Finding Format (ASFF)

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Processes

Risk