AWS Security Hub vs Threat Stack Cloud Security Platform [EOL] comparison

Amazon Web Services (AWS) and F5 are both solutions in the Cloud Security Posture Management (CSPM) category. Additionally, 88% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 88% of F5 users who would recommend it.

AWS Security Hub

Read 25 AWS Security Hub reviews

7,757 Views
3,413 Comparison Views

88% willing to recommend

Threat Stack Cloud Security...

Read 8 Threat Stack Cloud Security Platform [EOL] reviews

88% willing to recommend

AWS Security Hub

Threat Stack Cloud Security...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 10, 2025

Threat Stack Cloud Security Platform EOL and AWS Security Hub compete in the cloud security domain. AWS Security Hub appears more favorable due to its comprehensive features and integration capabilities.

Features: Threat Stack Cloud Security Platform EOL offers real-time event monitoring, custom policy management, and endpoint security monitoring. AWS Security Hub provides integration with AWS services, centralized security view across accounts, and comprehensive alerting for compliance issues.

Room for Improvement: Threat Stack Cloud Security Platform EOL could enhance its integration across diverse environments, fine-tune customer service, and improve scalability for broader use cases. AWS Security Hub may benefit from improving its user interface, lowering pricing for better accessibility, and expanding effectiveness in multi-cloud environments.

Ease of Deployment and Customer Service: AWS Security Hub offers seamless integration within the AWS ecosystem, benefiting existing AWS users with consistent customer service. Threat Stack Cloud Security Platform EOL requires more initial setup effort and demands a tailored deployment approach.

Pricing and ROI: Threat Stack Cloud Security Platform EOL is cost-effective due to competitive pricing and long-term monitoring savings. AWS Security Hub provides value through efficient use of AWS credits and scalability, which enhances ROI despite higher upfront costs.

To learn more, read our detailed Cloud Security Posture Management (CSPM) Report (Updated: August 2025).

Buyer's Guide

Cloud Security Posture Management (CSPM)

August 2025

Download the complete report

Helped 867,821 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

AWS Security Hub

Average Rating

7.6

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Security Orchestration Automation and Response (SOAR) (5th), Cloud Security Posture Management (CSPM) (14th)

Threat Stack Cloud Security...

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

No ranking in other categories

Featured Reviews

MuhammadAzhar Khan

Senior DevOps Engineer at Alibaba Group

Offers best practice recommendations and supports various compliance standards

Security Hub provides insightful information about what is running and where there might be weaknesses. It offers best practice recommendations and supports various compliance standards such as ISO and PCI DSS. Enabling these compliance checks helps identify non-compliant services and suggests steps to achieve compliance. The main advantage is providing information and compliance insights rather than prevention.

Read full review

Skyler Cain

Software Development Manager at Rent Dynamics

SecOps program for us, as a smaller company, is amazing; they know what to look for

They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter. Even as part of the SecOps Program, that could be helpful; a quick analysis. They're analyzing our whole infrastructure and saying, "You have one VPC and that doesn't make a lot of sense, that should be multiple VPCs and here's why." The architecture of the servers in whatever cloud-hosting provider you're on could be helpful. Other than that, they should continue to expand on their notifications and on what's a vulnerability. They do a great job of that and we want them to continue to do that. It would be cool, since the agent is already deployed and they know about the server, they know the IP address, and they know what vulnerability is there, for them to test the vulnerability and see if they can actually exploit it. Or, once we patch it, they could double-check that it can't be. I don't know how hard that would be to build. Thinking on it off the top off my head, it could be a little challenging but it could also be highly interesting. It would also be great if we could test a couple of other features like hammering a server with 100 login attempts and see what happens. Real test scenarios could be really helpful. That is probably more something close to what they do with the SOC 2 audit or the report. But more visualization of that, being able to test things out on our infrastructure to make sure we can or can't hit this box could be interesting.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature of AWS Security Hub is the ability to track when monitoring is not enabled on any of my resources."

"The solution shows us our compliance score."

"I find all of the features to be highly valuable."

"The platform has valuable features for security."

"The most valuable feature of the solution stems from the fact that it is easy to manage...It is a scalable solution."

"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."

"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."

"AWS Security Hub's unified dashboard does help streamline my process of identifying vulnerabilities, but we don't use Inspector."

More AWS Security Hub pros

"We like the ability of the host security module to monitor the processes running on our servers to help us monitor activity."

"There has been a measurable decrease in the meantime to remediation... because we have so many different tech verticals already collated in one place, our ability to respond is drastically different than it used to be."

"An important feature of this solution is monitoring. Specifically, container monitoring."

"The number-one feature is the monitoring of interactive sessions on our Linux machines. We run an immutable environment, so that nothing is allowed to be changed in production... We're constantly monitoring to make sure that no one is violating that. Threat Stack is what allows us to do that."

"We're using it on container to see when activity involving executables happens, and that's great."

"Threat Stack has connectivity."

"Technical support is very helpful."

"It is scalable. It deploys easily with curl and yum."

More Threat Stack Cloud Security Platform [EOL] pros

Cons

"The support must be quicker."

"It is not flexible for multi-cloud environments."

"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."

"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."

"Security needs to be measured based on their own criteria. We can't add custom criteria specific to our organization. For example, having an S3 bucket publicly available might be flagged as a critical alert, but it might not be critical in a sandbox environment. So, it gets flagged as critical, which becomes a false positive. So, customization options and creating custom dashboards would be areas for improvement."

"There is room for improvement in implementing AI capabilities."

"The solution lacks self-sufficiency."

"Security Hub is currently not worth investing in, as it requires more configurations and integration with other services to work effectively."

More AWS Security Hub cons

"It shoots back a lot of alerts."

"I would like further support of Windows endpoint agents or the introduction of support for Windows endpoint agents."

"They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter."

"The reports aren't very good. We've automated the report generation via the API and replaced almost all the reports that they generate for us using API calls instead."

"The solution’s ability to consume alerts and data in third-party tools (via APIs and export into S3 buckets) is moderate. They have some work to do in that area... The API does not mimic the features of the UI as far as reporting and pulling data out go. There's a big discrepancy there."

"The one thing that we know they're working on, but we don't have through the tool, is the application layer. As we move to a serverless environment, with AWS Fargate or direct Lambda, that's where Threat Stack does not have the capacity to provide feed. Those are areas that it's blind to now..."

"The API - which has grown quite a bit, so we're still learning it and I can't say whether it still needs improvement - was an area that had been needing it."

"The user interface can be a little bit clunky at times... There's a lot of information that needs to be waded through, and the UI just isn't great."

More Threat Stack Cloud Security Platform [EOL] cons

Pricing and Cost Advice

"The pricing is fine. It is not an expensive tool."

"Security Hub is not an expensive solution."

"The price of the solution is not very competitive but it is reasonable."

"The price of AWS Security Hub is average compared to other solutions."

"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."

"AWS Security Hub's pricing is pretty reasonable."

"There are multiple subscription models, like yearly, monthly, and packaged."

"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."

"It came in cheaper than Trend Micro when we purchased it a few years ago."

"We find the licensing and pricing very easy to understand and a good value for the services provided."

"It is very expensive compared to some other products. The pricing is definitely high."

"Pricing seems to be in line with the market structure. It's fine."

"I'm happy with the amount that we spend for the product that we get and the overall service that we get. It's not cheap, but I'm still happy with the spend."

"What we're paying now is somewhere around $15 to $20 per agent per month, if I recall correctly. The other cost we have is SecOps."

"It is a cost-effective choice versus other solutions on the market."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

867,821 professionals have used our research since 2012.

Comparison Review

it_user186927

Director of Operations at Bell

Feb 16, 2015

Cybereason vs. Interset vs. SQRRL

Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Manufacturing Company

10%

Government

Performing Arts

15%

Manufacturing Company

11%

Comms Service Provider

Real Estate/Law Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	5
Large Enterprise	12

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	5
Large Enterprise	2

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...

See all answers

What do you like most about AWS Security Hub?

The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.

See all answers

What needs improvement with AWS Security Hub?

Regarding how Amazon can improve AWS Security Hub, they have numerous services that are discriminated individually and grouped into packages. However, the sheer number of services can be overwhelmi...

See all answers

Ask a question

Earn 20 points

Comparisons

Microsoft Sentinel vs AWS Security Hub

Compared 36% of the time

Wiz vs AWS Security Hub

Compared 12% of the time

Prisma Cloud by Palo Alto Networks vs AWS Security Hub

Compared 7% of the time

Microsoft Defender for Cloud vs AWS Security Hub

Compared 5% of the time

CrowdStrike Falcon Cloud Security vs AWS Security Hub

Compared 3% of the time

More AWS Security Hub Competitors

BMC Helix Cloud Security vs Threat Stack Cloud Security Platform [EOL]

Compared 32% of the time

Microsoft Defender for Cloud Apps vs Threat Stack Cloud Security Platform [EOL]

Compared 28% of the time

Netskope vs Threat Stack Cloud Security Platform [EOL]

Compared 22% of the time

Check Point CloudGuard CNAPP vs Threat Stack Cloud Security Platform [EOL]

Compared 18% of the time

More Threat Stack Cloud Security Platform [EOL] Competitors

Product Reports

Buyer's Guide

AWS Security Hub

September 2025

Download AWS Security Hub product report

Buyer's Guide

Threat Stack Cloud Security Platform [EOL]

August 2025

Threat Stack Cloud Security Platform [EOL] report

Download Threat Stack Cloud Security Platform [EOL] product report

Also Known As

SQRRL

Threat Stack, CSP,

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts.

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments.

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

Threat Stack Cloud Security Platform [EOL] offers robust security features including endpoint monitoring, rule customization, and integration capabilities, with easy connectivity to cloud services like Docker and AWS.

Threat Stack Cloud Security Platform [EOL] provides tools for enhancing security visibility across cloud infrastructure. It supports AWS and Docker integration, facilitating efficient threat detection and management. Users appreciate its capability to configure customizable alerts and monitor endpoints, sessions, API interactions, and cloud services. However, there are areas needing improvement, such as better serverless environment support and reduced alert frequency. The platform services smaller organizations by compensating for limited security resources with its comprehensive monitoring and auditing tools.

What are the key features?

Easy Cloud Service Integration: Streamlined connectivity with Docker and AWS for efficient monitoring.
Customizable Rule Sets: Tailor security rules to meet specific organizational needs.
Email Alerts: Receive timely notifications about security events and threats.
Interactive Session Monitoring: Track live sessions for suspicious activities.
API Integration: Connect effortlessly with third-party tools for an enhanced security posture.
SecOps Support: Assistance for organizations lacking dedicated security teams.

What are the benefits and ROI features?

Streamlined Threat Detection: Effective process monitoring to identify potential threats.
Cost Efficiency: Serves companies with limited resources by providing essential security functions.
Comprehensive Audits: Helps in regular examinations of cloud infrastructure, enhancing compliance.
Visibility into Cloud Operations: Offers a detailed dashboard for threat visibility and monthly vulnerability assessments.

In specific industries, Threat Stack Cloud Security Platform [EOL] is utilized for its strength in monitoring cloud infrastructure and preventing unauthorized access. Organizations in fields where cloud operations are critical use it for regular audits and monitoring. Its capabilities in threat management are leveraged to maintain secure operations and compliance, especially where there is no dedicated security team.

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com

StatusPage.io, Walkbase, Spanning, DNAnexus, Jobcase, Nextcapital, Smartling, Veracode, 6sense

Buyer's Guide

Cloud Security Posture Management (CSPM)

August 2025

Download Free Report

Find out what your peers are saying about Wiz, Palo Alto Networks, SentinelOne and others in Cloud Security Posture Management (CSPM). Updated: August 2025.

DOWNLOAD NOW

867,821 professionals have used our research since 2012.

See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.