aws_compliance

AWS Compliance

Ensure whether AWS Redshift clusters have the specified maintenance settings. Redshift clusters `allowVersionUpgrade` should be set to `true` and `automatedSnapshotRetentionPeriod` should be greater than 7.

redshift_cluster_maintenance_settings_check

cis_controls_v8_ig1_11_2

11.2 Perform Automated Backups

cis_controls_v8_ig1_11_4

11.4 Establish and Maintain an Isolated Instance of Recovery Data

hipaa_final_omnibus_security_rule_2013_164_308_a_7_ii_a

164.308(a)(7)(ii)(A) Data backup plan

nist_800_171_rev_2_3_14_3

3.14.3 Monitor system security alerts and advisories and take action in response

rbi_itf_nbfc_3_3

3.3 Vulnerability Management

nist_800_172_3_4_2_e

3.4.2e Employ automated mechanisms to detect misconfigured or unauthorized system components; after detection, [Selection (one or more): remove the components; place the components in a quarantine or remediation network] to facilitate patching, re-configuration, or other mitigations

cis_controls_v8_ig1_4_1

4.1 Establish and Maintain a Secure Configuration Process

cis_controls_v8_ig1_7_3

7.3 Perform Automated Operating System Patch Management

acsc_essential_eight_ml_1_2_5

ACSC-EE-ML1-2.5: Patch applications ML1

acsc_essential_eight_ml_1_6_5

ACSC-EE-ML1-6.5: Patch operating systems ML1

acsc_essential_eight_ml_1_6_6

ACSC-EE-ML1-6.6: Patch operating systems ML1

acsc_essential_eight_ml_1_6_7

ACSC-EE-ML1-6.7: Patch operating systems ML1

acsc_essential_eight_ml_2_6_5

ACSC-EE-ML2-6.5: Patch operating systems ML2

acsc_essential_eight_ml_2_6_6

ACSC-EE-ML2-6.6: Patch operating systems ML2

acsc_essential_eight_ml_2_6_7

ACSC-EE-ML2-6.7: Patch operating systems ML2

acsc_essential_eight_ml_3_2_9

ACSC-EE-ML3-2.9: Patch applications ML3

acsc_essential_eight_ml_3_6_5

ACSC-EE-ML3-6.5: Patch operating systems ML3

acsc_essential_eight_ml_3_6_6

ACSC-EE-ML3-6.6: Patch operating systems ML3

acsc_essential_eight_ml_3_6_7

ACSC-EE-ML3-6.7: Patch operating systems ML3

acsc_essential_eight_ml_3_6_8

ACSC-EE-ML3-6.8: Patch operating systems ML3

rbi_cyber_security_annex_i_6

Annex I (6)

cisa_cyber_essentials_booting_up_things_to_do_first_3

Booting Up: Things to Do First-3

nist_800_53_rev_5_cm_2_b

CM-2(b)

nist_800_53_rev_5_cm_2_b_1

CM-2(b)(1)

nist_800_53_rev_5_cm_2_b_2

CM-2(b)(2)

nist_800_53_rev_5_cm_2_b_3

CM-2(b)(3)

nist_800_53_rev_5_cm_3_3

CM-3(3) Automated Change Implementation

nist_800_53_rev_5_cp_9_a

CP-9(a)

nist_800_53_rev_5_cp_9_b

CP-9(b)

nist_800_53_rev_5_cp_9_c

CP-9(c)

ffiec_d_3_cc_pm_b_1

D3.CC.PM.B.1

ffiec_d_3_cc_pm_b_3

D3.CC.PM.B.3

nist_csf_pr_ds_4

PR.DS-4

nist_csf_pr_ip_1

PR.IP-1

nist_csf_pr_ip_4

PR.IP-4

all_controls_redshift

Redshift

nist_800_53_rev_5_sc_5_2

SC-5(2) Capacity, Bandwidth, And Redundancy

nist_800_53_rev_5_si_2_2

SI-2(2) Automated Flaw Remediation Status

nist_800_53_rev_5_si_2_5

SI-2(5) Automatic Software And Firmware Updated

nist_800_53_rev_5_si_2_c

SI-2(c)

nist_800_53_rev_5_si_2_d

SI-2(d)

cisa_cyber_essentials_your_systems_2

Your Systems-2

AWS Redshift should have required maintenance settings

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: AWS Redshift should have required maintenance settings

Description

Usage

SQL

Tags