For our product security and data privacy is very critical. We needed to have a check on all aspects of vulnerability in system. Our in-house team was not that much expert to check for all the critical security aspects of the product. We wanted something managed and takes care of our security. For us AWS Security Hub has been very helpful solution to take care of our secuity issues.
Pros
Compliance Checks - We required a PCIDSS compliant cloud server and AWS had it already ready to use which reduced our go to market time.
It also gave us good recommendations about if we have configured our security groups incorrectly then it allowed us to fix this.
Multi-region security hub on one dashboard
Cons
Detailed reporting can be improved to help fixing issues and better root cause analysis.
Account setting up for new users in security groups is little complicated could have been a simple onboarding process.
The ready to use compliant friendly resources are there but they don't allow much customisation.
Likelihood to Recommend
Where you have a need for automated compliance checks for you deployed server its very helpful and reliable. But you want a customisation's and that also very much for your compliant friendly test, these automations can be very tricky and require a lot of documentation reading to understand things. Also AWS Security Hub doesn't much give good support with third party integrations its more of AWS focused.
All software, regardless of what it is would benefits from strong security checks. AWS Security Hub does a great job at this for being a cloud security management service that have many outstanding features such as best practice checks, alerts for aggregation, and automated remedies where they see fit in your program.
Pros
Monitoring Malware and DDos attack
Strong technical support
Easy to integrate with AWS cloud
Cons
Very expensive. You would need a large budget for this
Improved dashboard that have better alerts
Required team to mitigate issue as a lot of notification will appear overtime and clog up the monitoring page
Likelihood to Recommend
AWS Security Hub is mainly for protecting your software, video games, web application, etc... from external digital threats. This is a must for all software out there that can afford it. This also require a decent amount of resources to mitigate problems so that the monitoring page isn't overloaded. So overall, a large amount of budget and manpower is required to maintain this product.
AWS Security Hub has helped us improve security posture and reduce the risk of security breaches. The tools have helped with security visibility, compliance, threat detection, and incident response. AWS Security Hub provides a centralized view of our organization's security posture across their AWS environment, making it easier to identify potential security threats and vulnerabilities.
Pros
Security Visibility is very good
Integrates seamlessly with AWS Cloud
Early Threat Detection
Incident Response Management
Cons
Reporting Dashboard could be better
More Help Content would have been better
Tool could be made easier
Likelihood to Recommend
<ol><li>Security visibility: provides a centralized view of an organization's security posture across AWS environment, making it easier to identify potential security threats and vulnerabilities</li><li>Compliance: integrates with a range of AWS services and third-party security solutions, making it easier to comply with various security standards and regulations.</li><li>Threat detection: uses machine learning algorithms to analyze data from various sources, such as AWS CloudTrail and Amazon GuardDuty, to identify potential security threats.</li><li>Incident response: provides tools and features that help quickly and efficiently respond to security incidents, such as the ability to create and manage security playbooks.</li></ol>
We use AWS security hub to gain visibility into our high priority security events. We configure it for alerting on certain high risk activity from services like IAM, AWS Firewall Manager and AWS GuarDuty and also use it to check our existing AWS footprint against industry security standards like PCI, GLBA and others in or der to ensure we are compliant.
Pros
Alerting
Aggregation, organization and prioritization of security alerts and events
Third party integration
Cons
Not easy to read past data, especially once it moves into Glacier deep storage
performance is somewhat sluggish ... other systems are much faster to analyze data
Doesn't always provide a remediation solution or suggested fix like other 3rd party tools like Qualys.
It's hard to get the initial configuration and enrollment completed as there's a lot of manual intervention for every configured rule that needs to be enabled
alerts are often times delayed
Likelihood to Recommend
I don't think there's yet a perfect tool in this category of security and incident aggregators, but AWS Security Hub is an excellent tool for having visibility into our overall security posture. It is a great aggregator for many AWS services but also for third party security tools with which it integrates really well.
VU
Verified User
Program Manager in Information Technology (501-1000 employees)
We have implemented AWS Security Hub in our AWS Cloud across the whole organization in order to perform security checks and trigger alerts when any requirement is not as expected. As we have everything in AWS environment it was really easy to integrate and we are using all the features provided by this tool.
Pros
Integration
Alers
Cons
Documentation
Likelihood to Recommend
If you are looking for a tool to check if you have any security issues and then trigger alerts based on that, AWS Security Hub is for you if you are using AWS Cloud this solution becomes even better once it's also provided by AWS and easily to setup and start taking the advantages of it.
VU
Verified User
Analyst in Information Technology (10,001+ employees)
