Security Findings

The Security Findings section provides detailed information about security issues, vulnerabilities, and compliance violations with comprehensive management capabilities for tracking and resolution.

Findings Overview

The Findings section provides detailed information about security issues:

• Finding Details: Complete description, severity, and affected resources
• Remediation Guidance: Step-by-step instructions to resolve issues
• Compliance Mapping: Which standards are affected by each finding
• Status Tracking: Current state and resolution progress

Finding Categories

Findings are categorized by severity to help prioritize remediation efforts:

• Critical: Security vulnerabilities, exposed credentials, and compliance violations requiring immediate attention
• High Priority: Infrastructure misconfigurations, access control issues, and monitoring gaps needing prompt action
• Medium/Low Priority: Best practice violations and optimization opportunities for ongoing improvement

Finding Management

Each finding provides comprehensive details including description, affected resources, severity level, and remediation steps. Users can:

• Add Comments: Document remediation efforts, business context, and track progress
• Request Exceptions: For findings that cannot be resolved immediately or are false positives, with required justification and organizational approval

Exception Expiration

If an exception was raised with a due date and that date has passed, the finding status will automatically revert to the latest status from AWS Security Hub.