Executive Summary
AWS has announced AWS Security Hub Extended, a new plan that integrates curated third-party security solutions directly into its platform. This offering simplifies procurement and deployment for enterprise customers by consolidating billing, offering pre-negotiated pay-as-you-go pricing, and unifying security findings from partners within the Security Hub console. The goal is to provide a full-stack enterprise security solution that extends beyond native AWS services, reducing the complexity of managing multiple security vendors.
Key Takeaways
* Product: AWS Security Hub Extended, a new plan for the existing AWS Security Hub service.
* Function: Simplifies procurement, deployment, and integration of a curated set of third-party security solutions covering endpoint, identity, email, network, data, and more.
* Simplified Procurement: AWS acts as the seller of record, providing customers with a single bill, pre-negotiated pricing, and no long-term commitments for partner solutions.
* Unified Operations: Security findings from all integrated partner solutions are automatically normalized into the Open Cybersecurity Schema Framework (OCSF) and aggregated in Security Hub for centralized analysis.
* Key Partners: The launch includes solutions from partners such as CrowdStrike, Okta, Splunk, Zscaler, Proofpoint, Cyera, and SailPoint.
* Pricing: The plan uses flexible pay-as-you-go or flat-rate pricing with no upfront investments required.
* Availability: Generally available now in all AWS commercial Regions where Security Hub is offered.
Strategic Importance
This move positions AWS Security Hub as a central security marketplace and management platform, increasing its value and customer stickiness by directly addressing enterprise pain points around vendor sprawl and complex procurement cycles.