turbot/ibm_compliance

Control: 3.4 Ensure alerts are defined on custom views to notify of unauthorized requests, critical account actions, and high-impact operations in your account

Description

Events that you collect and centralize in the IBM Cloud Activity Tracker with LogDNA service provide information about actions that take place on your account. You can define alerts to notify promptly of problems, anomalies, and abnormal situations.

Remediation

IBM Cloud Activity Tracker with LogDNA does not include default templates for views or alerts. You can define your own views, alerts, and notification channels. Default notification channels are configured by using presets.

Usage

Run the control in your terminal:

powerpipe control run ibm_compliance.control.cis_v100_3_4

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run ibm_compliance.control.cis_v100_3_4 --share

SQL

This control uses a named query:

manual_control

Tags