Description:

AWS Security Hub provides you with a comprehensive view of the security state of your AWS resources. Security Hub collects security data from across AWS accounts and services, and helps you analyze your security trends to identify and prioritize the security issues across your AWS environment.


Rationale:

Make sure data sent has no personal info or sensitive information sent to or from the Lambda functions code. For this function to work we need to make sure Security Hub & AWS Secrets Manager so that all the data can be properly traced.


Remediation:

Enabling Security Hub from the console When you enable Security Hub from the console, you are also given the option to enable the supported security standards.

1. Use the credentials of the IAM identity to sign in to the Security Hub console.

2. When you open the Security Hub console for the first time, choose Get Started.

3. On the welcome page, Security standards lists the security standards that Security Hub supports.

    To enable a standard, select its check box.

4. Choose Enable Security Hub


Reference:

https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub.pdf

https://aws.amazon.com/secrets-manager/