Benchmark: C1.1 The entity identifies and maintains confidential information to meet the entity’s objectives related to confidentiality
Description
Identifies Confidential information - Procedures are in place to identify and designate confidential information when it is received or created and to determine the period over which the confidential information is to be retained.
Protects Confidential Information from Destruction - Procedures are in place to protect confidential information from erasure or destruction during the specified retention period of the information
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select C1.1 The entity identifies and maintains confidential information to meet the entity’s objectives related to confidentiality.
Run this benchmark in your terminal:
powerpipe benchmark run aws_compliance.benchmark.soc_2_c_1_1Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_compliance.benchmark.soc_2_c_1_1 --shareControls
- RDS DB instances should have deletion protection enabled
- S3 bucket object lock should be enabled
- S3 buckets with versioning enabled should have lifecycle policies configured