AWS Security Hub gives you a comprehensive view of your security alerts and security posture across your AWS accounts. There are a range of powerful security tools at your disposal, from firewalls and endpoint protection to vulnerability and compliance scanners. But oftentimes this leaves your team switching back-and-forth between these tools to deal with hundreds, and sometimes thousands, of security alerts every day. With Security Hub, you now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS Identity and Access Management (IAM) Access Analyzer, and AWS Firewall Manager, as well as from AWS Partner solutions. AWS Security Hub continuously monitors your environment using automated security checks based on the AWS best practices and industry standards that your organization follows. You can also take action on these security findings by investigating them in Amazon Detective or by using Amazon CloudWatch Event rules to send the findings to ticketing, chat, Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR), and incident management tools or to custom remediation playbooks. Get started with AWS Security Hub in just a few clicks in the Management Console and once enabled, Security Hub will begin aggregating and prioritizing findings and conducting security checks.
Below are the cmdlets which are available with AWS Security Hub
| CmdletName | ServiceOperation |
| Add-SHUBResourceTag | TagResource |
| Confirm-SHUBInvitation | AcceptInvitation |
| Deny-SHUBInvitation | DeclineInvitations |
| Disable-SHUBImportFindingsForProduct | DisableImportFindingsForProduct |
| Disable-SHUBSecurityHub | DisableSecurityHub |
| Disable-SHUBStandardsBatch | BatchDisableStandards |
| Enable-SHUBImportFindingsForProduct | EnableImportFindingsForProduct |
| Enable-SHUBSecurityHub | EnableSecurityHub |
| Enable-SHUBStandardsBatch | BatchEnableStandards |
| Get-SHUBActionTarget | DescribeActionTargets |
| Get-SHUBEnabledProductsForImportList | ListEnabledProductsForImport |
| Get-SHUBEnabledStandard | GetEnabledStandards |
| Get-SHUBFinding | GetFindings |
| Get-SHUBHub | DescribeHub |
| Get-SHUBInsight | GetInsights |
| Get-SHUBInsightResult | GetInsightResults |
| Get-SHUBInvitationList | ListInvitations |
| Get-SHUBInvitationsCount | GetInvitationsCount |
| Get-SHUBMasterAccount | GetMasterAccount |
| Get-SHUBMember | GetMembers |
| Get-SHUBMemberList | ListMembers |
| Get-SHUBProduct | DescribeProducts |
| Get-SHUBResourceTag | ListTagsForResource |
| Get-SHUBStandard | DescribeStandards |
| Get-SHUBStandardsControl | DescribeStandardsControls |
| Import-SHUBFindingsBatch | BatchImportFindings |
| New-SHUBActionTarget | CreateActionTarget |
| New-SHUBInsight | CreateInsight |
| New-SHUBMember | CreateMembers |
| Remove-SHUBActionTarget | DeleteActionTarget |
| Remove-SHUBInsight | DeleteInsight |
| Remove-SHUBInvitation | DeleteInvitations |
| Remove-SHUBMasterAccountAssociation | DisassociateFromMasterAccount |
| Remove-SHUBMember | DeleteMembers |
| Remove-SHUBMemberAssociation | DisassociateMembers |
| Remove-SHUBResourceTag | UntagResource |
| Send-SHUBMemberInvitation | InviteMembers |
| Update-SHUBActionTarget | UpdateActionTarget |
| Update-SHUBFinding | UpdateFindings |
| Update-SHUBFindingsBatch | BatchUpdateFindings |
| Update-SHUBInsight | UpdateInsight |
| Update-SHUBStandardsControl | UpdateStandardsControl |
You can also check other AWS Services, and each services cmdlets we are providing.