gcp_compliance

GCP Compliance

It is recommended that Cloud Audit Logging is configured to track all admin activities and read, write access to user data.

audit_logging_configured_for_all_service

pci_dss_v321_requirement_10_1

10.1 Implement audit trails to link all access to system components to each individual user.

pci_dss_v321_requirement_10_2

10.2 Implement automated audit trails for all system components to reconstruct the events

hipaa_164_308_a_1_ii

164.308(a)(1)(ii) Implementation specifications

hipaa_164_312_b

164.312(b) Audit controls

nist_800_53_rev_5_au_7

Audit Record Reduction And Report Generation (AU-7)

nist_800_53_rev_5_au_6

Audit Record Review, Analysis And Reporting (AU-6)

soc_2_2017_cc_4_1_1

CC4.1.1

soc_2_2017_cc_4_1_2

CC4.1.2

soc_2_2017_cc_4_1_3

CC4.1.3

soc_2_2017_cc_4_1_4

CC4.1.4

soc_2_2017_cc_4_1_5

CC4.1.5

soc_2_2017_cc_4_1_6

CC4.1.6

soc_2_2017_cc_4_1_7

CC4.1.7

soc_2_2017_cc_4_1_8

CC4.1.8

soc_2_2017_cc_7_3_1

CC7.3.1

soc_2_2017_cc_7_3_2

CC7.3.2

soc_2_2017_cc_7_3_3

CC7.3.3

soc_2_2017_cc_7_3_4

CC7.3.4

soc_2_2017_cc_7_3_5

CC7.3.5

nist_csf_v10_de_ae_2

DE.AE-2

nist_csf_v10_pr_pt_1

PR.PT-1

nist_csf_v10_rs_an_1

RS.AN-1

all_controls_resourcemanager

Resource Manager

Ensure that Cloud Audit Logging is configured properly across all services and all users from a project

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, Forseti Security and CFT Scorecard across all your GCP projects using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-gcp-compliance

Control: Ensure that Cloud Audit Logging is configured properly across all services and all users from a project

Description

Usage

SQL

Tags