Class: Aws::SecurityHub::Types::SecurityControlDefinition

Inherits:
Struct
  • Object
show all
Includes:
Aws::Structure
Defined in:
lib/aws-sdk-securityhub/types.rb

Overview

Provides metadata for a security control, including its unique standard-agnostic identifier, title, description, severity, availability in Amazon Web Services Regions, and a link to remediation steps.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#current_region_availabilityString

Specifies whether a security control is available in the current Amazon Web Services Region.

Returns:

  • (String)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#customizable_propertiesArray<String>

Security control properties that you can customize. Currently, only parameter customization is supported for select controls. An empty array is returned for controls that don’t support custom properties.

Returns:

  • (Array<String>)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#descriptionString

The description of a security control across standards. This typically summarizes how Security Hub evaluates the control and the conditions under which it produces a failed finding. This parameter doesn’t reference a specific standard.

Returns:

  • (String)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#parameter_definitionsHash<String,Types::ParameterDefinition>

An object that provides a security control parameter name, description, and the options for customizing it. This object is excluded for a control that doesn’t support custom parameters.

Returns:



29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#remediation_urlString

A link to Security Hub documentation that explains how to remediate a failed finding for a security control.

Returns:

  • (String)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#security_control_idString

The unique identifier of a security control across standards. Values for this field typically consist of an Amazon Web Services service name and a number (for example, APIGateway.3). This parameter differs from ‘SecurityControlArn`, which is a unique Amazon Resource Name (ARN) assigned to a control. The ARN references the security control ID (for example, arn:aws:securityhub:eu-central-1:123456789012:security-control/APIGateway.3).

Returns:

  • (String)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#severity_ratingString

The severity of a security control. For more information about how Security Hub determines control severity, see [Assigning severity to control findings] in the *Security Hub User Guide*.

[1]: docs.aws.amazon.com/securityhub/latest/userguide/controls-findings-create-update.html#control-findings-severity

Returns:

  • (String)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end

#titleString

The title of a security control.

Returns:

  • (String)


29454
29455
29456
29457
29458
29459
29460
29461
29462
29463
29464
29465
# File 'lib/aws-sdk-securityhub/types.rb', line 29454

class SecurityControlDefinition < Struct.new(
  :security_control_id,
  :title,
  :description,
  :remediation_url,
  :severity_rating,
  :current_region_availability,
  :customizable_properties,
  :parameter_definitions)
  SENSITIVE = []
  include Aws::Structure
end