gcp_compliance

GCP Compliance

It is recommended that IAM policy on Cloud Storage bucket does not allows anonymous or public access.

storage_bucket_not_publicly_accessible

pci_dss_v321_requirement_7_1

7.1 Limit access to system components and cardholder data to only those individuals whose job requires such access

nist_800_53_rev_5_ac_3

Account Management (AC-3)

soc_2_2017_cc_5_2_3

CC5.2.3

soc_2_2017_cc_6_1_3

CC6.1.3

soc_2_2017_cc_6_1_7

CC6.1.7

nist_800_53_rev_5_ac_6

Least Privilege (AC-6)

nist_800_53_rev_5_mp_2

Media Access (MP-2)

nist_csf_v10_pr_ac_4

PR.AC-4

nist_800_53_rev_5_ac_5

Separation Of Duties (AC-5)

all_controls_storage

Storage

Ensure that Cloud Storage bucket is not anonymously or publicly accessible

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, Forseti Security and CFT Scorecard across all your GCP projects using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-gcp-compliance

Control: Ensure that Cloud Storage bucket is not anonymously or publicly accessible

Description

Usage

SQL

Tags