AWS Security Hub: AWS Security Hub Automation Rule

My Saved Presets

This template creates an AWS Security Hub automation rule with the specified criteria and actions. The automation rule is used to automatically respond to security findings based on the defined criteria. The example includes all available fields for criteria and actions.

Actions

FindingFieldsUpdate *

Confidence

Criticality

Note

Text

RelatedFindings


ProductArn

ProductArn

Severity

Label MEDIUM CRITICAL HIGH INFORMATIONAL LOW MEDIUM
Normalized
Product

VerificationState

Workflow

Status

Type

Criteria

AwsAccountId

CompanyName

ComplianceAssociatedStandardsId

ComplianceSecurityControlId

ComplianceStatus

Confidence

CreatedAt

Criticality

Description

FirstObservedAt

GeneratorId

Id

LastObservedAt

NoteText

NoteUpdatedAt

NoteUpdatedBy

ProductArn

ProductName

RecordState

RelatedFindingsId

RelatedFindingsProductArn

ResourceDetailsOther

ResourceId

ResourcePartition

ResourceRegion

ResourceTags

ResourceType

SeverityLabel

SourceUrl

Title

Type

UpdatedAt

UserDefinedFields

VerificationState

WorkflowStatus

Description

IsTerminal

RuleName

RuleOrder

RuleStatus

Share Template

Loading Library ...

AWS Security Hub Automation Rule

Resources (1)

Template Settings

RuleWithCriteriaActionsTags
AWS::SecurityHub::AutomationRule

Types

CloudFormation Template