AWS Security Hub controls supported by AWS Audit Manager - AWS Audit Manager

AWS Security Hub controls supported by AWS Audit Manager

Audit Manager enables you to report the results of compliance checks directly from Security Hub. To do this, you specify one or more Security Hub controls as a data source mapping when you configure a custom control in Audit Manager.

  • Audit Manager doesn’t collect evidence from service-linked AWS Config rules that are created by Security Hub. For more information, see the Troubleshooting section of this guide.

  • The new SecurityControls feature doesn't change how Audit Manager collects evidence from Security Hub. If you start using this feature, and a control in your assessment uses Security Hub as a data source type, Audit Manager will continue to collect compliance check evidence in the same way as before. Moreover, there are no changes to the format of the evidence and the finding that’s reported from Security Hub.

  • On November 9, 2022, Security Hub launched automated security checks aligned to the Center for Internet Security’s (CIS) AWS Foundations Benchmark version 1.4.0 requirements, Level 1 and 2 (CIS v1.4.0). In Security Hub, the CIS v1.4.0 standard is supported in addition to the CIS v1.2.0 standard. At this time, Audit Manager doesn’t support the security checks that Security Hub provides for CIS v1.4.0.

The following Security Hub controls are supported by Audit Manager.

For more information about any of the following Security Hub controls, choose an item in the table or see Security standards and controls in AWS Security Hub in the AWS Security Hub User Guide.