An automation rule can be used to automatically update findings in AWS Security Hub. For background information about how automation rules work, see Understanding automation rules in Security Hub.
After creating an automation rule, the delegated Security Hub administrator can edit the rule.
If you want to keep the rule criteria and actions the same, but change the order in which Security Hub applies an automation rule, you can edit just the rule order. Choose your preferred method, and follow the steps to edit rule order.
For instructions on editing the criteria or actions of an automation rule, see Editing automation rules.
To edit automation rule order (console)
Using the credentials of the Security Hub administrator, open the AWS Security Hub console at https://console.aws.amazon.com/securityhub/
. -
In the navigation pane, choose Automations.
-
Select the rule whose order you want to change. Choose Edit priority.
-
Choose Move up to increase the rule's priority by one unit. Choose Move down to decrease the rule priority's by one unit. Choose Move to top to assign the rule an order of 1 (this gives the rule precedence over other existing rules).
Note
When you create a rule in the Security Hub console, Security Hub automatically assigns rule order based on the order of rule creation. The most recently created rule has the lowest numerical value for rule order and therefore applies first.
