aws_compliance

AWS Compliance

Ensure that an AWS account is part of AWS Organizations. The rule is non-compliant if an AWS account is not part of AWS Organizations or AWS Organizations master account ID does not match rule parameter MasterAccountId.

account_part_of_organizations

gxp_21_cfr_part_11_11_10_d

11.10(d) Limiting system access to authorized individuals

gxp_21_cfr_part_11_11_10_g

11.10(g) Use of authority checks to ensure that only authorized individuals can use the system, electronically sign a record, access the operation or computer system input or output device, alter a record, or perform the operation at hand

cis_controls_v8_ig1_4_1

4.1 Establish and Maintain a Secure Configuration Process

cis_controls_v8_ig1_4_6

4.6 Securely Manage Enterprise Assets and Software

acsc_essential_eight_ml_2_5_2

ACSC-EE-ML2-5.2: Restrict administrative privileges ML2

acsc_essential_eight_ml_2_5_3

ACSC-EE-ML2-5.3: Restrict administrative privileges ML2

acsc_essential_eight_ml_3_5_2

ACSC-EE-ML3-5.2: Restrict administrative privileges ML3

acsc_essential_eight_ml_3_5_3

ACSC-EE-ML3-5.3: Restrict administrative privileges ML3

all_controls_account

Account

nist_800_53_rev_5_cm_2_b

CM-2(b)

nist_800_53_rev_5_cm_2_b_1

CM-2(b)(1)

nist_800_53_rev_5_cm_2_b_2

CM-2(b)(2)

nist_800_53_rev_5_cm_2_b_3

CM-2(b)(3)

nist_800_53_rev_5_cm_3_3

CM-3(3) Automated Change Implementation

nist_800_53_rev_5_cm_6_a

CM-6(a)

nist_800_53_rev_5_cm_9_b

CM-9(b)

nist_csf_pr_ip_1

PR.IP-1

AWS account should be part of AWS Organizations

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: AWS account should be part of AWS Organizations

Description

Usage

SQL

Tags