Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SecurityHub: example integration of findings with Logging or SIEM #20

Open
tomwwright opened this issue Oct 15, 2020 · 0 comments
Open

SecurityHub: example integration of findings with Logging or SIEM #20

tomwwright opened this issue Oct 15, 2020 · 0 comments
Labels
module/security type/gap Desired functionality that is not yet well-formed

Comments

@tomwwright
Copy link
Owner

tomwwright commented Oct 15, 2020
edited
Loading

SecurityHub Findings are published as CloudWatch Events. LittleOrange should showcase an example of forwarding findings to some external logging or SIEM system.

e.g. CloudWatch Event Rule to invoke Lambda to publish to Slack
e.g. CloudWatch Event Rule to invoke Lambda to publish to CloudWatch Logs
@tomwwright tomwwright added type/feature Feature or functionality that is well-formed and can be implemented and closed module/security type/gap Desired functionality that is not yet well-formed and removed type/feature Feature or functionality that is well-formed and can be implemented and closed labels Oct 15, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
module/security type/gap Desired functionality that is not yet well-formed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@tomwwright