Understanding integrations in Security Hub

AWS Security Hub can ingest security findings from several AWS services and supported third-party AWS Partner Network security solutions. These integrations can help you get a comprehensive view of security and compliance across your AWS environment. Security Hub ingests findings from integrated solutions and converts them to the AWS Security Finding Format (ASFF).

Important

For supported AWS and third-party product integrations, Security Hub receives and consolidates findings that are generated only after you enable Security Hub for your AWS accounts. The service doesn't retroactively receive and consolidate security findings that were generated before you enabled Security Hub.

The Integrations page of the Security Hub console provides access to available AWS and third-party product integrations. The Security Hub API also has operations for managing integrations.

An integration might not be available in all AWS Regions. If an integration isn't supported in the Region that you are currently signed in to on the Security Hub console, it doesn't appear on the Integrations page of the console. For a list of integrations that are available in the China Regions and AWS GovCloud (US) Regions, see Availability of integrations by Region.

In addition to AWS service and built-in third-party integrations, you can integrate custom security products with Security Hub. For more information, see Integrating Security Hub with custom products.

Document Conventions

Sample control findings in Security Hub

Reviewing a list of integrations