Ensure all data in Amazon S3 has been discovered, classified and secured when required.
Details Amazon S3 buckets can contain sensitive data, that for security purposes should be discovered, monitored, classified and protected. Macie...
- Home
- Security Hardening
- CIS Amazon Web Services Foundations L2.1 4.0
CIS Amazon Web Services Foundations L2.1 4.0
Ensure all S3 buckets employ encryption-at-rest
Details Amazon S3 provides a variety of no, or low, cost encryption options to protect data at rest. Rationale: Encrypting...Ensure a log metric filter and alarm exist for AWS Config configuration changes – ‘alarm exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for AWS Config configuration changes – ‘metric filter exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for AWS Config configuration changes – ‘subscription exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for AWS Management Console authentication failures – ‘alarm exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for AWS Management Console authentication failures – ‘metric filter exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for AWS Management Console authentication failures – ‘subscription exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL) – ‘alarm exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL) – ‘metric filter exists’
Details Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric...