Control: SageMaker notebook instances should be encrypted using CMK
Description
This control checks if SageMaker notebook instance storage volumes are encrypted with AWS KMS Customer Master Keys (CMKs) instead of AWS managed-keys.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.sagemaker_notebook_instance_encrypted_with_kms_cmkSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.sagemaker_notebook_instance_encrypted_with_kms_cmk --shareSQL
This control uses a named query:
sagemaker_notebook_instance_encrypted_with_kms_cmk