Automating Findings Identified by AWS Security Hub

This hands-on lab focuses on AWS Security Hub findings and how you can create an automated response to these findings. The automation will be facilitated by EventBridge and SNS.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Enable AWS Security Hub

Enable AWS Config first
Then, enable AWS Security Hub

Create an SNS Topic

Create an SNS topic for Security Hub findings

Subscribe via email to the created topic
Navigate to your email and confirm the subscription (You will receive a confirmation email.)

Create an EventBridge Rule

Link to an EventBridge event
Link to the previously created SNS topic

Create Resources to Generate Findings

Create an EC2 security group

Make sure the ingress on port 22 is set to 0.0.0.0/0

Verify Automation

Navigate to your email and ensure receipt of Security Hub findings

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Automating Findings Identified by AWS Security Hub

About this Hands-on Lab

Learning Objectives

Additional Resources

What are Hands-on Labs

Newsletter