Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


Creating a Lambda function


You need to create and configure a CloudWatch Events rule to get Amazon AWS Security Hub events and forward the events to the CloudWatch Logs. To do that you need to create an AWS Lambda Function that triggers the processing from CloudWatch Events to CloudWatch Logs.

  1. Go to your AWS Lambda console.
  2. Click Create function.
  3. In the Author from scratch pane, complete the following fields:

    Table 1: Lambda Function




    You can use GuardDutyToCloudWatch or something more appropriate.


    Python 3.6


    Choose an existing role

    Existing Role

    Select the role that you created.

  4. Click Create function.