For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/security/default_rules/def-000-k0m.md. A documentation index is available at /llms.txt.

Security Hub should be enabled in all active regions

securityhub

Description

AWS Security Hub provides a unified view of security findings and automated compliance checks across an account’s regions. Enabling Security Hub in every active region surfaces misconfiguration and threat-detection findings everywhere workloads run, instead of leaving regional blind spots.

Remediation

Enable Security Hub in each active region by following the Enabling Security Hub CSPM guide.