Skip to content

runbooks security deploy-guarddutyΒΆ

assess | Security/Identity

βœ… CERTIFIED Β· T:βœ”οΈ V:βž– A:βž– X:βž–

Deploy GuardDuty organization-wide with delegated admin configuration (JIRA FIN-64).

Assesses security posture against SOC2/PCI-DSS/HIPAA frameworks via Security Hub

Single account

runbooks security deploy-guardduty --profile <account>

Org-wide (Landing Zone)

# [A1-Discovery] org-wide via Landing Zone hub profile
runbooks security deploy-guardduty --all-profile $AWS_OPERATIONS_PROFILE

Show a Security/Identity assesses security posture against soc2/pci-dss/hipaa frameworks via security hub summary for last month across all accounts and flag any anomalies above the 20% threshold.

ExamplesΒΆ