AWS Security Hub 推出增强版预览，旨在帮助用户更有效地管理和提升云安全。新版本整合了来自 Amazon GuardDuty、Amazon Inspector、AWS Security Hub Cloud Security Posture Management (CSPM) 和 Amazon Macie 等服务的安全数据，提供更全面的安全态势视图。通过改进的仪表板和可视化工具，用户可以优先处理关键安全问题，大规模响应风险，提高团队效率，并更好地保护其云环境。

🛡️ **集中式安全管理**: AWS Security Hub 集成了 Amazon GuardDuty、Amazon Inspector、Amazon Macie 和 AWS Security Hub CSPM 等服务，在一个统一的云安全解决方案中提供全面的安全态势视图。

💡 **改进的仪表板**: 新的 Security Hub 摘要仪表板提供了一个统一的 AWS 安全状况视图，将安全发现组织成不同的类别，以便更容易地识别和优先处理风险。

🔍 **曝光摘要**: Exposure 摘要小部件通过分析资源关系和来自 Amazon Inspector、AWS Security Hub CSPM 和 Amazon Macie 的信号，帮助用户识别和优先处理安全风险。这些风险发现会自动生成，突出显示关键的安全风险所在。

📊 **安全覆盖范围小部件**: 此小部件帮助用户识别潜在的覆盖差距，并了解哪些安全功能、账户和功能需要改进以提高安全覆盖范围。

🚦 **关键安全领域**: AWS Security Hub 分为五个关键领域，以简化安全管理，包括曝光、威胁、漏洞、态势管理和敏感数据，每个领域都提供针对特定安全问题的深入见解。

<section class="blog-post-content lb-rtxt"><table id="amazon-polly-audio-table"><tbody><tr><td id="amazon-polly-audio-tab"><p></p></td></tr></tbody></table><p>AWS Security Hub has been a central place for you to view and aggregate security alerts and compliance status across Amazon Web Services (AWS) accounts. Today, we are announcing the preview release of the new AWS Security Hub which offers additional correlation, contextualization, and visualization capabilities. This helps you prioritize critical security issues, respond at scale to reduce risks, improve team productivity, and better protect your cloud environment.</p><p>Here’s a quick look at the new AWS Security Hub.</p><p><img class="aligncenter wp-image-97204 size-full c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/13/news_2025-06_security-hub-17-1.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1884" height="1045" /></p><p>With this new enhancement, AWS Security Hub integrates security capabilities like <a href="https://aws.amazon.com/guardduty/?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;Amazon GuardDuty</a>, <a href="https://aws.amazon.com/inspector/?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;Amazon Inspector</a>, <a href="https://aws.amazon.com/security-hub/cspm&quot;&gt;AWS Security Hub Cloud Security Posture Management (CSPM)</a>, <a href="https://aws.amazon.com/macie/?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;Amazon Macie</a>, and other AWS security capabilities to help you gain visibility across your cloud environment through centralized management in a unified cloud security solution. </p><p><strong>Getting started with the new AWS Security Hub</strong><br />Let me walk you through how to get started with AWS Security Hub.</p><p>If you’re a new customer to AWS Security Hub, you need to navigate to the AWS Security Hub console to enable AWS security capabilities and capabilities and start assessing risk across your organization. You can learn more on the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/security-hub-adv-getting-started-enable.html?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;Documentation page</a>.</p><p>After you have AWS Security Hub enabled, it will automatically consume data from supporting security capabilities you’ve enabled, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, and AWS Security Hub CSPM. You can navigate to the AWS Security Hub console to view these findings and benefit from insights created through correlation of findings across these capabilities.</p><p>As security risks are uncovered, they’re presented in a redesigned Security Hub summary dashboard. The new Security Hub summary dashboard provides a comprehensive, unified view of your AWS security posture. The dashboard organizes security findings into distinct categories, making it easier to identify and prioritize risks.</p><p>The new <strong>Exposure summary</strong> widget helps you identify and prioritize security exposures by analyzing resource relationships and signals from Amazon Inspector, AWS Security Hub CSPM, and Amazon Macie. These exposure findings are automatically generated and are a key part of the new solution, highlighting where your critical security exposures are located. You can learn more about exposure on the <a href="https://docs.aws.amazon.com/securityhub/latest/userguide/exposure-fidnings-adv.html?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;Documentation page</a>.</p><p><img class="aligncenter size-full wp-image-97109 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-06.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1692" height="947" /></p><p>AWS Security Hub now provides a <strong>Security coverage</strong> widget designed to help you identify potential coverage gaps. You can use this widget to identify where you’re missing coverage by the security capabilities that power Security Hub. This visibility helps you identify which capabilities, accounts, and features you need to address to improve your security coverage.</p><p><img class="aligncenter size-full wp-image-97106 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-04-1.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1692" height="778" /></p><p>As you can see on the navigation menu, AWS Security Hub is organized into five key areas to streamline security management:</p><ul><li><strong>Exposure</strong>: Provides visibility into all exposure findings, a security vulnerability or misconfiguration that could potentially expose an AWS resource or system to unauthorized access or compromise, generated by Security Hub, helping you identify resources that might be accessible from outside your environment</li><li><strong>Threats</strong>: Consolidates all threat findings generated by Amazon GuardDuty, showing potential malicious activities and intrusion attempts</li><li><strong>Vulnerabilities</strong>: Displays all vulnerabilities detected by Amazon Inspector, highlighting software flaws and configuration issues</li><li><strong>Posture management</strong>: Shows all posture management findings from AWS Security Hub Cloud Security Posture Management (CSPM), helping provide compliance with security best practices</li><li><strong>Sensitive data</strong>: Presents all sensitive data findings identified by Amazon Macie, helping you track and protect your sensitive information</li></ul><p><img class="aligncenter wp-image-97202 size-full c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/13/news_2025-06_security-hub-18.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1072" height="559" /></p><p>When you navigate to the <a href="https://console.aws.amazon.com/securityhub/v2/home#/exposure?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;&lt;strong&gt;Exposure&lt;/strong&gt;&lt;/a&gt; page, you’ll see findings grouped by title, with severity levels clearly indicated to help you focus on critical issues first.</p><p><img class="aligncenter size-full wp-image-97110 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-07.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1893" height="922" /></p><p>To explore specific exposures, you can select any finding to see affected resources. The panel includes key information about the implicated resource, account, Region, and when the issue was detected.</p><p><img class="aligncenter size-full wp-image-97111 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-08.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="917" height="814" /></p><p>In this panel, you’ll also find an attack path visualization that is particularly useful for understanding complex security relationships. For network exposure paths, you can see all components involved in the path—including virtual private clouds (VPCs), subnets, security groups, network access control lists (ACLs), and load balancers—helping you identify exactly where to implement security controls. The visualization also highlights Identity and Access Management (IAM) relationships, showing how permission configurations might allow privilege escalation or data access. Resources with multiple contributing traits are clearly marked so you can quickly identify which components represent the greatest risk.</p><p><img class="aligncenter size-full wp-image-97115 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-10.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1920" height="1055" /></p><p>The <a href="https://console.aws.amazon.com/securityhub/v2/home#/threats?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;&lt;strong&gt;Threats&lt;/strong&gt;&lt;/a&gt; dashboard provides actionable insights into potential malicious activities detected by Amazon GuardDuty, organizing findings by severity so you can quickly identify critical issues like unusual API calls, suspicious network traffic, or potential credential compromises. The dashboard includes <a href="https://aws.amazon.com/blogs/aws/introducing-amazon-guardduty-extended-threat-detection-aiml-attack-sequence-identification-for-enhanced-cloud-security/?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;GuardDuty Extended Threat Detection</a> findings, with all “Critical” severity threats representing these Extended Threat Detections that require immediate attention.</p><p>Similarly, the <a href="https://console.aws.amazon.com/securityhub/v2/home#/vulnerabilities?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;&lt;strong&gt;Vulnerabilities&lt;/strong&gt;&lt;/a&gt; dashboard from Amazon Inspector provides a comprehensive view of software vulnerabilities and network exposure risks. The dashboard highlights vulnerabilities with known exploits, packages requiring urgent updates, and resources with the highest numbers of vulnerabilities.</p><p><img class="aligncenter size-full wp-image-97120 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-14.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1875" height="915" /></p><p>Another valuable new feature is the <a href="https://console.aws.amazon.com/securityhub/v2/home#/resources?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;&lt;strong&gt;Resources&lt;/strong&gt;&lt;/a&gt; view, which provides an inventory of all resources deployed in your organization covered by AWS Security Hub. You can use this view to quickly identify which resources have findings against them and filter by resource type or finding severity. Selecting any resource provides detailed configuration information without needing to pivot to other consoles, streamlining your investigation workflow.</p><p><img class="aligncenter size-full wp-image-97117 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/11/news_2025-06_security-hub-12.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="1891" height="928" /></p><p>The new Security Hub also offers integration capabilities to help you comprehensively monitor your cloud environments and connect with third-party security solutions. This gives you the flexibility to create a unified security solution tailored to your organization’s specific needs.</p><p><img class="aligncenter size-full wp-image-97146 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/12/news_2025-06_security-hub-15.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="2059" height="927" /></p><p>For example, with integration capability, when viewing a security finding, you can select the <strong>Create ticket</strong> option and choose your preferred ticketing integration.</p><p><img class="aligncenter size-full wp-image-97147 c5" src="https://d2908q01vomqb2.cloudfront.net/da4b9237bacccdf19c0760cab7aec4a8359010b0/2025/06/12/news_2025-06_security-hub-16.png?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot; alt="" width="2172" height="978" /></p><p><strong>Additional things to know</strong><br />Here are a couple of things to note:</p><ul><li><strong>Availability</strong> – During this preview period, the new AWS Security Hub is available in following AWS Regions: US East (N. Virginia, Ohio), US West (N. California, Oregon), Africa (Cape Town), Asia Pacific (Hong Kong, Jakarta, Mumbai, Osaka, Seoul, Singapore, Sydney, Tokyo), Canada (Central), Europe (Frankfurt, Ireland, London, Milan, Paris, Stockholm), Middle East (Bahrain), and South America (São Paulo).</li><li><strong>Pricing</strong> – The new AWS Security Hub is available at no additional charge during the preview period. However, you will still incur costs for the integrated capabilities including Amazon GuardDuty, Amazon Inspector, Amazon Macie, and AWS Security Hub CSPM.</li><li><strong>Integration with existing AWS security capabilities</strong> – Security Hub integrates with Amazon GuardDuty, Amazon Inspector, AWS Security Hub CSPM, and Amazon Macie, providing a comprehensive security posture without additional operational overhead.</li><li><strong>Enhanced data interoperability</strong> – The new Security Hub uses the <a href="https://github.com/ocsf&quot;&gt;Open Cybersecurity Schema Framework (OCSF)</a>, enabling seamless data exchange across your security capabilities with normalized data formats.</li></ul><p>To learn more about the enhanced AWS Security Hub and join the preview, visit the <a href="https://aws.amazon.com/security-hub/?trk=c4ea046f-18ad-4d23-a1ac-cdd1267f942c&amp;amp;sc_channel=el&quot;&gt;AWS Security Hub</a> product page.</p><p>Happy building!</p><p>— <a href="https://linkedin.com/in/donnieprakoso&quot;&gt;Donnie&lt;/a&gt;&lt;/p&gt;&lt;/section&gt;&lt;aside id="Comments" class="blog-comments"><div data-lb-comp="aws-blog:cosmic-comments" data-env="prod" data-content-id="2bb74de7-a9e6-4109-ad22-759c46731872" data-title="Unify your security with the new AWS Security Hub for risk prioritization and response at scale (Preview)" data-url="https://aws.amazon.com/blogs/aws/unify-your-security-with-the-new-aws-security-hub-for-risk-prioritization-and-response-at-scale-preview/&quot;&gt;&lt;p data-failed-message="Comments cannot be loaded… Please refresh and try again.">Loading comments…</p></div></aside>