Best practices to respond to security risks across your AWS Organizations

AWS Cloud Operations Blog

This article provides a comprehensive guide to responding to security risks across AWS Organizations, focusing on best practices for identifying, prioritizing, and remediating security findings.

Use AWS Security Hub to aggregate and prioritize security findings across multiple accounts
Leverage Amazon EventBridge for event-driven security incident response
Utilize AWS Systems Manager Automation Runbooks for automated remediation
Follow a structured incident response approach: detect, isolate, contain, investigate, and prevent
Implement the Automated Security Response on AWS (ASR) solution for predefined remediation actions

Key services recommended include Security Hub, Systems Manager, EventBridge, and the new AWS Security Incident Response service to help organizations quickly address and mitigate security risks in their AWS environments.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Sep 23
2025

Optimize security operations with AWS Security Incident Response

May 29
2024

Identify AWS resources at risk across your multi-account environment with AWS Organizations integrations

Jun 19
2025

How to prioritize security risks using AWS Security Hub exposure findings

Jun 8
2026

Operationalizing AWS security: A maturity roadmap

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Best practices to respond to security risks across your AWS Organizations

Related articles