diff --git a/modules/securityhub-baseline/main.tf b/modules/securityhub-baseline/main.tf
index bb87b7e..a58738e 100644
--- a/modules/securityhub-baseline/main.tf
+++ b/modules/securityhub-baseline/main.tf
@@ -40,6 +40,14 @@ resource "aws_securityhub_invite_accepter" "invitee" {
 # Subscribe standards
 # --------------------------------------------------------------------------------------------------
 
+resource "aws_securityhub_standards_subscription" "cis3" {
+  count = var.enable_cis_standard ? 1 : 0
+
+  standards_arn = "arn:aws:securityhub:${data.aws_region.current.name}::standards/cis-aws-foundations-benchmark/v/3.0.0"
+
+  depends_on = [aws_securityhub_account.main]
+}
+
 resource "aws_securityhub_standards_subscription" "cis" {
   count = var.enable_cis_standard ? 1 : 0