AWS Security Hub CSPM launches AI Security Best Practices standard with 31 automated controls

Published
June 30, 2026
https://aws.amazon.com/about-aws/whats-new/2026/06/aws-security-hub-cspm-ai-security/

AWS Security Hub CSPM AI Security Best Practices Standard

AWS Security Hub CSPM introduces the AI Security Best Practices standard, a set of 31 automated security controls to ensure your AI resources adhere to security best practices. This standard evaluates Amazon Bedrock, Bedrock AgentCore, and SageMaker workloads without manual assessments or custom rule authoring.

The standard covers critical security domains such as network isolation, encryption, VPC placement, KMS key usage, and authorization controls. It applies to various AI infrastructure components, generating findings for deviations from best practices.

Available in all AWS Regions where Security Hub CSPM is offered, including AWS GovCloud (US) and China Regions. The standard identifier is standards/ai-security-best-practices/v/1.0.0. For more information, refer to the AWS Security Hub CSPM User Guide. You can try it at no cost for 30 days with the AWS Free Tier.

Source: AWS release notes




If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.

Follow our blog

Get the latest insights and advice on AWS services from our experts.

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.