My Saved Presets
You must be logged in to view saved presets

Loading Library ...

Elevate Severity for Specific Resources

This template elevates the severity of findings to CRITICAL for specific AWS resources, such as an S3 bucket, when they are at risk.

example

aws_securityhub_automation_rule
actions
finding_fields_update
note


related_findings


severity

types

workflow

criteria



depends_on


lifecycle

ignore_changes

replace_triggered_by

precondition


postcondition



Terraform Template

resource "aws_securityhub_automation_rule" "example" {

  actions {

    finding_fields_update {

      note {
        text = "This is a critical resource. Please review ASAP."
        updated_by = "sechub-automation"
      }

      severity {
        label = "CRITICAL"
        product = "0.0"
      }
      types = ["Software and Configuration Checks/Industry and Regulatory Standards"]

      user_defined_fields = {
        key = "value"
      }
    }
    type = "FINDING_FIELDS_UPDATE"
  }
  description = "Elevate finding severity to CRITICAL when specific resources such as an S3 bucket is at risk"
  rule_name = "Elevate severity of findings that relate to important resources"
  rule_order = 1
}

© 2024 asecurecloud. All rights reserved.