Coming October 25: PeerSpot Awards will be announced! Learn more
2021-01-22T23:15:55Z
Julia Frohwein - PeerSpot reviewer
Senior Director of Delivery at PeerSpot (formerly IT Central Station)
  • 0
  • 12

What needs improvement with AWS Security Hub?

Please share with the community what you think needs improvement with AWS Security Hub.

What are its weaknesses? What would you like to see changed in a future version?

1
PeerSpot user
1 Answer
Ankit-Kumar - PeerSpot reviewer
Engineering Manager Technology at Nykaa
Real User
Top 10
2021-01-22T23:15:55Z
22 January 21

The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach. The product should not be a region restriction product. It should be global. It should give you the visibility of all the instances that you have for one account, be it in one region or many regions. There should be visibility of all the region in one place.

Find out what your peers are saying about Amazon, Microsoft, Splunk and others in Security Information and Event Management (SIEM). Updated: September 2022.
634,590 professionals have used our research since 2012.
Related Questions
Jonny Klompas - PeerSpot reviewer
DevSecOps Engineer at OurCrowd LLC
Aug 16, 2022
Hello, Wiz and Ermetic provide an overview of security issues and classify them according to overall risk in a simple dashboard.  AWS Security Hub also has a dashboard that aggregates security issues from other AWS security tools like GuardDuty, IAM Access Advisor, Macie and Inspector but doesn't seem to list the top threats overall. I need to select an appropriate tool and I'm not sure th...
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Nov 26, 2021
Why?
See 2 answers
24 November 21
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will always have the performance capability you need. If you have Microsoft 365, it is very easy to plug the endpoints into Azure Sentinel. With this solution, you can go on the offensive and stay proactive, continually hunting for threats. Azure Sentinel is purely cloud-based and a leading next-generation SIEM. We have experienced a few false positives with Azure Sentinel. There is a certain level of expertise that you need to possess to appropriately utilize all of Azure Sentinel's offerings - it can be a somewhat steep learning curve to get things running at capacity. It would be an improvement if Azure Sentinel integrated better with other SaaS providers and offered more out-of-the-box connectors. You get a huge range of powerful security tools with AWS Security Hub, including compliance scanners, vulnerability endpoint protection, and firewalls. AWS Security Hub has very good detection and offers helpful real-time alerts. AWS Security Hub aggregates, organizes, and prioritizes security alerts or findings from other AWS services, all in one single pane. AWS Security Hub lacks a certain level of self-sufficiency, though. We would like to see AWS Security Hub become a multi-cloud solution. AWS Security Hub has some regional restrictions that have proved problematic for us; we need visibility for all instances we have on our account. We found that AWS Security Hub is not a good global product. Conclusion: We felt AWS was lacking in some basic features we consider essential, like multi-region coverage. We also wanted a solution that was more intuitive. We found Azure Sentinel to be a better fit for our team and our clients. We have a global reach and need a product that could satisfy cross-region coverage efficiently. We also feel that Azure Sentinel offers better proactive threat awareness.
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at ASPL INFO Services
26 November 21
Hi @Netanya Carmi ​, Had prepared some comparison factors between AWS and Azure for one of my presales discussions, hope this will hold some insights .So depending on the requirements from the client appropriate solutions can be proposed. Widely Azure Sentinel is what has be going of matching the customer requriements. AI and machine learning AWS service Azure service Description SageMaker Machine Learning A cloud service to train, deploy, automate, and manage machine learning models. Alexa Skills Kit Bot Framework Build and connect intelligent bots that interact with your users using text/SMS, Skype, Teams, Slack, Microsoft 365 mail, Twitter, and other popular services. Lex Speech Services API capable of converting speech to text, understanding intent, and converting text back to speech for natural responsiveness. Lex Language Understanding (LUIS) Allows your applications to understand user commands contextually. Polly, Transcribe Speech Services Enables both Speech to Text, and Text into Speech capabilities. Rekognition Cognitive Services Computer Vision: Extract information from images to categorize and process visual data. Face: Detect, identify, and analyze faces and facial expressions in photos. Skills Kit Virtual Assistant The Virtual Assistant Template brings together a number of best practices we've identified through the building of conversational experiences and automates integration of components that we've found to be highly beneficial to Bot Framework developers. Big data and analytics AWS service Azure service Description Redshift Synapse Analytics Cloud-based Enterprise Data Warehouse (EDW) that uses Massively Parallel Processing (MPP) to quickly run complex queries across petabytes of data. Lake Formation Data Share A simple and safe service for sharing big data Big data processing AWS service Azure service Description EMR Azure Data Explorer Fully managed, low latency, distributed big data analytics platform to run complex queries across petabytes of data. EMR Databricks Apache Spark-based analytics platform. EMR HDInsight Managed Hadoop service. Deploy and manage Hadoop clusters in Azure. EMR Data Lake Storage Massively scalable, secure data lake functionality built on Azure Blob Storage. Data orchestration / ETL AWS service Azure service Description Data Pipeline, Glue Data Factory Processes and moves data between different compute and storage services, as well as on-premises data sources at specified intervals. Create, schedule, orchestrate, and manage data pipelines. Glue Azure Purview A unified data governance service that helps you manage and govern your on-premises, multicloud, and software as a service (SaaS) data. Dynamo DB Table Storage, Cosmos DB NoSQL key-value store for rapid development using massive semi-structured datasets. Analytics and visualization AWS service Azure service Description Kinesis Analytics Stream Analytics Storage and analysis platforms that create insights from large quantities of data, or data that originates from many sources. Azure Data Explorer Data Lake Analytics Data Lake Store QuickSight Power BI Business intelligence tools that build visualizations, perform ad hoc analysis, and develop business insights from data. CloudSearch Cognitive Search Delivers full-text search and related search analytics and capabilities. Athena Data Lake Analytics Provides a serverless interactive query service that uses standard SQL for analyzing databases. Azure Synapse Analytics Azure Synapse Analytics is a limitless analytics service that brings together data integration, enterprise data warehousing, and big data analytics. It gives you the freedom to query data on your terms, using either serverless or dedicated resources at scale. Elasticsearch Service Elastic on Azure Use the Elastic Stack (Elastic, Logstash, and Kibana) to search, analyze, and visualize in real time. Database Type AWS Service Azure Service Description Relational database RDS SQL Database Managed relational database services in which resiliency, scale and maintenance are primarily handled by the Azure platform. Database for MySQL Database for PostgreSQL Database for MariaDB Serverless relational database Amazon Aurora Serverless Azure SQL Database serverless Database offerings that automatically scales compute based on the workload demand. You're billed per second for the actual compute used (Azure SQL)/data that's processed by your queries (Azure Synapse Analytics Serverless). Serverless SQL pool in Azure Synapse Analytics NoSQL/ DynamoDB Cosmos DB Cosmos DB is a globally distributed, multi-model database that natively supports multiple data models including key-value pairs, documents, graphs and columnar. Document SimpleDB Amazon DocumentDB Caching ElastiCache Cache for Redis An in-memory–based, distributed caching service that provides a high-performance store typically used to offload nontransactional work from a database. Database migration Database Migration Service Database Migration Service A service that executes the migration of database schema and data from one database format to a specific database technology in the cloud.
Related Articles
Navcharan Singh - PeerSpot reviewer
Senior Seo Executive at Ace Cloud Hosting
Aug 25, 2022
Security Information and Event Management (SIEM) solutions differ significantly from firewalls. While both security solutions are integral components of cybersecurity infrastructure, they have different capabilities, functions, and roles. Do you need SIEM if you already have a firewall? If you have questions about the difference between SIEM and firewall, you have come to the right place....
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Jul 05, 2022
Dear PeerSpot community members, This is our latest Community Spotlight for YOU. Here we've summarized and selected the latest posts (professional questions, articles and discussions) contributed by PeerSpot community members.  Check them out! Trending See what your peers are discussing at the moment! What were your main pain points during the SIEM product purchase process? What...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Apr 04, 2022
Hi peers, This is our new Community Spotlight that includes recent contributions (questions, articles and discussions) by the PeerSpot community members. Trending Is RPA beneficial for a healthcare organization? With the increasing risk of cyber attacks in the west, due to the war in Ukraine, how safe is your data in the cloud? Articles 8 Business Automation Ideas to Save Time and...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Mar 18, 2022
Hi community members, Here we go with a new Community Spotlight. We publish it to help YOU catch up on recent contributions by community members. Trending What open-source HCI solution do you recommend? How much time does SSO save? What are the main technical differences between Microsoft Power Automate and Blue Prism? Articles Top HCI in 2022 What is Web Design? The Ultima...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Mar 04, 2022
Hi community members, Here is our new Community Spotlight for YOU. We publish it to help you catch up on recent contributions by community members. Do you find it useful? Please comment below! Trending Top HCI in 2022 What are the main differences between XDR and SIEM? Articles Top 5 Ethernet Switches in 2022 SASE: what is it and what are the main benefits? Questions Che...
Related Solutions
Related Articles
Navcharan Singh - PeerSpot reviewer
Senior Seo Executive at Ace Cloud Hosting
Aug 25, 2022
SIEM vs. Firewall
Security Information and Event Management (SIEM) solutions differ significantly from firewalls. W...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Jul 05, 2022
Community Spotlight #17
Dear PeerSpot community members, This is our latest Community Spotlight for YOU. Here we've summ...
Download Free Report
Download our free Security Information and Event Management (SIEM) Report and find out what your peers are saying about Amazon, Microsoft, Splunk, and more! Updated: September 2022.
DOWNLOAD NOW
634,590 professionals have used our research since 2012.