AWS Continuum for rapid security risk management announced
AWS announced AWS Continuum, a new service designed to discover, prioritize, validate, and remediate security risks at machine speed within defined guardrails. This aims to shift security teams from manual triage to strategic oversight by automating the post-discovery vulnerability lifecycle, including prioritization, exploitability validation, and remediation. The service is available in a gated preview and integrates with existing AWS security tools.
- →AWS Continuum for security risk management
- →Automated vulnerability lifecycle management
- →Continuum threat modeling preview
- →Continuum penetration testing and code scanning preview
- →Integration with existing AWS security services
Features (3) ›
- AWS Continuum for security risk management
AWS Continuum discovers, prioritizes, validates, and remediates security risks at machine speed, operating within user-defined guardrails. It aims to accelerate the process of addressing software vulnerabilities by automating tasks previously requiring significant manual effort and cross-team coordination.
- Automated vulnerability lifecycle management
The service ingests findings from existing tools and scans, prioritizes vulnerabilities using a context graph of the environment and business, and validates exploitability in an isolated sandbox. Confirmed exposures are then offered fast, reversible mitigations and durable fixes that integrate with existing review and deployment processes.
- Continuum threat modeling preview
A new Continuum threat modeling feature is launching in preview, which automatically generates comprehensive threat models from design documents or source code. The output is provided in STRIDE format, assisting in security design and analysis.
Enhancements (2) ›
- Continuum penetration testing and code scanning preview
Existing AWS Security Agent capabilities are now available as Continuum penetration testing and Continuum code scanning, both offered in preview. These features are part of the broader Continuum offering for managing code vulnerabilities throughout their lifecycle.
- Integration with existing AWS security services
AWS Continuum is designed to work alongside other AWS security services, including Amazon GuardDuty and AWS Security Hub. This integration allows users to leverage Continuum's capabilities within their existing AWS security posture management.
https://aws.amazon.com/about-aws/whats-new/2026/06/aws-continuum/