azure_compliance

Azure Compliance

To ensure secure data encryption is enabled at the service level and the infrastructure level with two different encryption algorithms and two different keys, use an Azure Monitor dedicated cluster. This option is enabled by default when supported at the region, see https://docs.microsoft.com/azure/azure-monitor/platform/customer-managed-keys#customer-managed-key-overview.

monitor_log_cluster_infrastructure_encryption_enabled

nist_sp_800_53_rev_5_sc_28_1

Cryptographic Protection SC-28(1)

nist_sp_800_53_rev_5_sc_28

Protection of Information at Rest (SC-28)

Azure Monitor Logs clusters should be created with infrastructure-encryption enabled (double encryption)

azure

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-azure-compliance

Control: Azure Monitor Logs clusters should be created with infrastructure-encryption enabled (double encryption)

Description

Usage

SQL

Tags