CIS AWS Foundations Benchmark security checks that are not supported in Security Hub - AWS Security Hub

CIS AWS Foundations Benchmark security checks that are not supported in Security Hub

The following rules are not supported in the CIS AWS Foundations Benchmark standard in Security Hub, because they cannot be evaluated in an automated way. Security Hub focuses on automated security checks.

  • 1.15 – Ensure security questions are registered in the AWS account

  • 1.17 – Maintain current contact details

  • 1.18 – Ensure security contact information is registered

  • 1.19 – Ensure IAM instance roles are used for AWS resource access from instances

  • 1.21 – Do not set up access keys during initial user setup for all IAM users that have a console password

  • 4.4 – Ensure routing tables for VPC peering are "least access"