Once you turn on multiple detectors, a new problem immediately emerges — GuardDuty spits out alerts in GuardDuty format, Inspector in Inspector format, Macie in yet another format, and when you add configuration validation results from IAM, S3, and CloudTrail, an operator can no longer answer the single question: "Is our account secure right now?" AWS Security Hub is the aggregation, normalization, and scoring plane that solves this fragmentation. In the security exam, the essence of Security Hub is not a tool that performs detection, but a meta-tool that collects, standardizes, and prioritizes results from multiple detectors.