gcp_compliance

GCP Compliance

Instance addresses can be public IP or private IP. Public IP means that the instance is accessible through the public internet. In contrast, instances using only private IP are not accessible through the public internet, but are accessible through a Virtual Private Cloud (VPC).

sql_instance_not_publicly_accessible

pci_dss_v321_requirement_1_2_1

1.2.1 Restrict inbound and outbound traffic to that which is necessary for the cardholder data environment, and specifically deny all other traffic

hipaa_164_308_a_3_i

164.308(a)(3)(i) Workforce security

hipaa_164_308_a_3_ii

164.308(a)(3)(ii) Implementation specifications

hipaa_164_312_a_1

164.312(a)(1) Access control.

soc_2_2017_cc_5_2_3

CC5.2.3

soc_2_2017_cc_6_1_3

CC6.1.3

soc_2_2017_cc_6_1_7

CC6.1.7

nist_csf_v10_pr_ac_4

PR.AC-4

all_controls_sql

Ensure Instance IP assignment is set to private

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, Forseti Security and CFT Scorecard across all your GCP projects using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-gcp-compliance

Control: Ensure Instance IP assignment is set to private

Description

Usage

SQL

Tags