search
SupportSnyk LearnAPI referenceProduct updatesSign up for free
githubEdit

AWS Security Hub

The AWS Security Hubarrow-up-right integration sends Snyk issues to Security Hub, allowing you to centralize your security reporting, build custom alerting, and trigger automation. After it is configured, the integration automatically uploads Snyk issues to Security Hub as security findings. When issues are updated or new remediations become available, the corresponding Security Hub findings are automatically updated.

There are two steps required to configure the integration:

  1. Configure Security Hub to accept findings from Snyk in the Security Hub console.

  2. Configure Snyk to send findings to Security Hub in the Snyk dashboard.

hashtag
Configuring Security Hub to accept Snyk findings

Go the the Security Hub console for the AWS account and region you want to receive Snyk findings. Navigate to the Integrations section and search for Snyk. On the Snyk integration tile, click Accept findings and follow the prompts.

Search for Snyk integration
Search for Snyk integration

After this step is done, you can continue setting up the integration in the Snyk dashboard.

hashtag
Configuring Snyk to send findings to Security Hub

Navigate to the Snyk integrations pagearrow-up-right and search for Security Hub or navigate to the Cloud events section. Click on the Security Hub tile to start creating a new integration.

Create new Security Hub integration
Create new Security Hub integration

Enter a name for the integration, along with the AWS Account ID and AWS Region where you enabled the Snyk partner integration in step one.

Enter integration details
Enter integration details

After this step is complete, Snyk begins sending new issue events to Security Hub.

circle-info

Issues on existing Projects will not be sent to Security Hub unless those issues are updated. To backfill issues from existing projects, you can delete and re-import them.

hashtag
Snyk App authorization

If this is the first time you have set up an AWS Security Hub integration for your Organization, you will be prompted to complete the Snyk App authorization flow.

Snyk App authorization
Snyk App authorization

After completing the authorization flow you will be redirected to the settings page for the integration.

hashtag
Managing and deleting a Security Hub integration

Navigate to the Security Hub integration settings pagearrow-up-right in the Snyk dashboard and click on the name of the integration you want to manage.

Select integration to manage
Select integration to manage

Clicking on the name of an integration opens the settings page for that integration, where you can view and update configuration information for the integration.

To delete an integration, scroll to the bottom of the integration settings page and click the Remove integration button.

Remove integration
Remove integration

After the integration is deleted, Snyk will no longer send issues to Security Hub. Issues that have already been sent to Security Hub will remain there until they are archived.

PreviousAWS CloudTrail LakeNextGoogle Security Command Center

Last updated

Was this helpful?