AWS Security Hub is a cloud security posture management service that performs automated, continuous security best practice check against your AWS resources to help identify:
- misconfigurations
- aggregate security alerts
- Security hub is a regional service.
- Integration with Organization.
- IAM Access analyzer (analyzes CloudTrail logs to check for external access grant) and Macie (analyzes S3 buckets for public objects) are reported in Security Hub.