aws_compliance

AWS Compliance

This rule helps ensure the use of AWS recommended security best practices for AWS CloudTrail, by checking for the enablement of multiple settings. These include the use of log encryption, log validation, and enabling AWS CloudTrail in multiple regions.

cloudtrail_security_trail_enabled

gxp_21_cfr_part_11_11_10_a

11.10(a) Validation of systems to ensure accuracy, reliability, consistent intended performance, and the ability to discern invalid or altered records

gxp_eu_annex_11_operational_phase_13

13 Incident Management

nist_800_171_rev_2_3_13_2

3.13.2 Employ architectural designs, software development techniques, and systems engineering principles that promote effective information security within organizational systems

nist_800_171_rev_2_3_4_1

3.4.1 Establish and maintain baseline configurations and inventories of organizational systems (including hardware, software, firmware, and documentation) throughout the respective system development life cycles

nist_800_171_rev_2_3_6_1

3.6.1 Establish an operational incident-handling capability for organizational systems that includes preparation, detection, analysis, containment, recovery, and user response activities

nist_800_171_rev_2_3_6_2

3.6.2 Track, document, and report incidents to designated officials and/or authorities both internal and external to the organization

cis_controls_v8_ig1_4_1

4.1 Establish and Maintain a Secure Configuration Process

acsc_essential_eight_ml_3_1_7

ACSC-EE-ML3-1.7: Application control ML3

acsc_essential_eight_ml_3_5_16

ACSC-EE-ML3-5.16: Restrict administrative privileges ML3

acsc_essential_eight_ml_3_7_9

ACSC-EE-ML3-7.9: Multi-factor authentication ML3

article_30

Article 30 Records of processing activities

nist_800_53_rev_4_cm_2

Baseline Configuration (CM-2)

soc_2_cc_2_1

CC2.1 COSO Principle 13: The entity obtains or generates and uses relevant, quality information to support the functioning of internal control

all_controls_cloudtrail

CloudTrail

nist_csf_pr_ds_7

PR.DS-7

nist_csf_pr_ip_1

PR.IP-1

At least one trail should be enabled with security best practices

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: At least one trail should be enabled with security best practices

Description

Usage

SQL

Tags