From the course: AWS Advanced Security Management: Patterns and Practices

Unlock the full course today

Join today to access over 24,900 courses taught by industry experts.

Security Hub: Controls

Security Hub: Controls - Amazon Web Services (AWS) Tutorial

From the course: AWS Advanced Security Management: Patterns and Practices

Start my 1-month free trial Buy for my team

Security Hub: Controls

- [Instructor] Continuing our exploration of the new Security Hub, let's look at Controls. So Controls, basically, are where your score comes from, and remember that we had selected some compliance rules, basically, that our account should be evaluated against. So you can see that we have a pretty substantial failure rate here, and again, I purposely did a whole bunch of things wrong to make some data show up here. So you can see that I have 65 failed. And notice here, I have a control that's disabled. This is an option that we can do. So for example, my first failed control is security groups should not allow unrestricted access to ports with high risk. We all know why, because we could have someone come into an EC2 instance or an ECS cluster. So if I click on that, notice that what I could do if I wanted to is I could disable that. Now Controls have to be disabled one at a time, not the whole group. The group, basically, you opt in. You go, "Okay, I want to have all these controls…

Contents