Security Hub, Detective, Audit Manager and EventBridge - General SAP Guides
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Security Hub, Detective, Audit Manager and EventBridge

Building on implementation of GuardDuty and Amazon Macie, Amazon Security Hub acts as a central hub, consolidating and prioritizing security findings Amazon security services. Amazon Security Hub provides a unified view of the security posture across services surrounding a RISE with SAP deployment, allowing too quickly identify and address any security issues.

To further investigation and incident response capabilities, Amazon Detective analyses security incidents by gathering and processing relevant log data from Amazon resources. This service helps quickly identify the root cause of issues, enabling to take appropriate actions to mitigate the impact.

Maintaining compliance is also a critical aspect of securing a RISE with SAP environment. Amazon Audit Manager automates the assessment of Amazon resources against industry standards and regulations, helping demonstrate compliance and reduce the risk of non-compliance.

Finally, Amazon EventBridge enables real-time response to security events by triggering custom automated workflows and remediation actions. This service allows to quickly and efficiently address security incidents, minimizing the potential impact on RISE with SAP deployment

Below is example architecture of Amazon Security Hub, Amazon Detective, Amazon Audit Manager and Amazon EventBridge paired to RISE with SAP

Security Hub