Benchmark: Audit Events (AU-2)


The organization: a. Determines that the information system is capable of auditing the following events: [Assignment: organization-defined auditable events]; b. Coordinates the security audit function with other organizational entities requiring audit- related information to enhance mutual support and to help guide the selection of auditable events; c. Provides a rationale for why the auditable events are deemed to be adequate support after- the-fact investigations of security incidents.


Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-aws-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select Audit Events (AU-2).

Run this benchmark in your terminal:

powerpipe benchmark run aws_compliance.benchmark.fedramp_moderate_rev_4_au_2

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run aws_compliance.benchmark.fedramp_moderate_rev_4_au_2 --share