aws_compliance

AWS Compliance

AWS Simple Storage Service (AWS S3) Cross-Region Replication (CRR) supports maintaining adequate capacity and availability.

s3_bucket_cross_region_replication_enabled

pci_dss_v321_requirement_10_5_3

10.5.3 Current audit trail files are promptly backed up to a centralized log server or media that is difficult to alter

gxp_21_cfr_part_11_11_10

11.10 Controls for closed systems

gxp_21_cfr_part_11_11_10_a

11.10(a) Validation of systems to ensure accuracy, reliability, consistent intended performance, and the ability to discern invalid or altered records

gxp_21_cfr_part_11_11_10_c

11.10(c) Protection of records to enable their accurate and ready retrieval throughout the records retention period

gxp_21_cfr_part_11_11_10_e

11.10(e) Use of secure, computer-generated, time-stamped audit trails to independently record the date and time of operator entries and actions that create, modify, or delete electronic records

cis_controls_v8_ig1_11_2

11.2 Perform Automated Backups

cis_controls_v8_ig1_11_4

11.4 Establish and Maintain an Isolated Instance of Recovery Data

gxp_eu_annex_11_operational_phase_16

16 Business Continuity

hipaa_final_omnibus_security_rule_2013_164_308_a_1_ii_b

164.308(a)(1)(ii)(B) Risk management

hipaa_security_rule_2003_164_308_a_1_ii_b

hipaa_security_rule_2003_164_308_a_7_i

164.308(a)(7)(i) Contingency plan

hipaa_final_omnibus_security_rule_2013_164_308_a_7_i

hipaa_security_rule_2003_164_308_a_7_ii_a

164.308(a)(7)(ii)(A) Data backup plan

hipaa_final_omnibus_security_rule_2013_164_308_a_7_ii_a

hipaa_security_rule_2003_164_308_a_7_ii_b

164.308(a)(7)(ii)(B) Disaster recovery plan

hipaa_final_omnibus_security_rule_2013_164_308_a_7_ii_b

hipaa_final_omnibus_security_rule_2013_164_308_a_7_ii_c

164.308(a)(7)(ii)(C) Emergency mode operation plan

hipaa_security_rule_2003_164_308_a_7_ii_c

hipaa_security_rule_2003_164_310_d_2_iv

164.310(d)(2)(iv) Data backup and storage

hipaa_final_omnibus_security_rule_2013_164_310_d_2_iv

hipaa_security_rule_2003_164_312_a_2_ii

164.312(a)(2)(ii) Emergency access procedure

hipaa_final_omnibus_security_rule_2013_164_312_a_2_ii

gxp_eu_annex_11_operational_phase_17

17 Archiving

pci_dss_v321_requirement_2_2

2.2 Develop configuration standards for all system components

pci_dss_v321_requirement_3_1_c

3.1.c For a sample of system components that store cardholder data examine files and system records to verify that the data stored does not exceed the requirements defined in the data retention policy and observe the deletion mechanism to verify data is deleted securely

nist_800_171_rev_2_3_13_2

3.13.2 Employ architectural designs, software development techniques, and systems engineering principles that promote effective information security within organizational systems

nist_800_171_rev_2_3_8_9

3.8.9 Protect the confidentiality of backup CUI at storage locations

cis_controls_v8_ig1_4_6

4.6 Securely Manage Enterprise Assets and Software

gxp_eu_annex_11_project_phase_4_8

4.8 Validation - Data Transfer

gxp_eu_annex_11_operational_phase_5

5 Data

nydfs_23_500_02_b_5

500.02(b)(5)

rbi_itf_nbfc_6_3

6.3 Backup and Recovery

gxp_eu_annex_11_operational_phase_7_1

7.1 Data Storage - Damage Protection

gxp_eu_annex_11_operational_phase_7_2

7.2 Data Storage - Backups

rbi_itf_nbfc_8_IX

8.IX Backup and Recovery

soc_2_a_1_2

A1.2 The entity authorizes, designs, develops or acquires, implements, operates, approves, maintains, and monitors environmental protections, software, data back-up processes, and recovery infrastructure to meet its objectives

fedramp_moderate_rev_4_au_9_2

AU-9(2) Audit Backup On Separate Physical Systems / Components

nist_800_53_rev_4_au_9_2

nist_800_53_rev_5_au_9_2

AU-9(2) Store On Separate Physical Systems Or Components

rbi_cyber_security_annex_i_12

Annex I (12)

cisa_cyber_essentials_booting_up_things_to_do_first_1

Booting Up: Things to Do First-1

soc_2_cc_7_4

CC7.4 The entity responds to identified security incidents by executing a defined incident response program to understand, contain, remediate, and communicate security incidents, as appropriate

nist_800_53_rev_5_cm_6_a

CM-6(a)

nist_800_53_rev_5_cm_9_b

CM-9(b)

nist_800_53_rev_5_cp_1_2

CP-1(2)

nist_800_53_rev_5_cp_10_2

CP-10(2) Transaction Recovery

nist_800_53_rev_5_cp_2_5

CP-2(5) Continue Mission And Business Functions

nist_800_53_rev_5_cp_6_1

CP-6(1) Separation From Primary Site

nist_800_53_rev_5_cp_6_2

CP-6(2) Recovery Time And Recovery Point Objectives

nist_800_53_rev_5_cp_6_a

CP-6(a)

nist_800_53_rev_5_cp_9_a

CP-9(a)

nist_800_53_rev_5_cp_9_b

CP-9(b)

fedramp_moderate_rev_4_cp_9_b

nist_800_53_rev_5_cp_9_c

CP-9(c)

ffiec_d_1_rm_rm_b_1

D1.RM.Rm.B.1

ffiec_d_5_ir_pi_b_6

D5.IR.Pl.B.6

fedramp_low_rev_4_sc_5

Denial Of Service Protection (SC-5)

fedramp_moderate_rev_4_sc_5

nist_800_53_rev_4_sc_5

nist_csf_id_be_5

ID.BE-5

fedramp_low_rev_4_cp_9

Information System Backup (CP-9)

nist_800_53_rev_4_cp_9

fedramp_moderate_rev_4_cp_10

Information System Recovery And Reconstitution (CP-10)

fedramp_low_rev_4_cp_10

nist_800_53_rev_4_cp_10

nist_csf_pr_ds_4

PR.DS-4

nist_csf_pr_ip_4

PR.IP-4

nist_csf_pr_ip_9

PR.IP-9

nist_csf_pr_pt_5

PR.PT-5

fedramp_low_rev_4_au_9

Protection of Audit Information (AU-9)

nist_csf_rc_rp_1

RC.RP-1

nist_csf_rs_rp_1

RS.RP-1

all_controls_s3

nist_800_53_rev_5_sc_5_2

SC-5(2) Capacity, Bandwidth, And Redundancy

nist_800_53_rev_5_si_13_5

SI-13(5) Failover Capability

nist_800_53_rev_5_cp_10

System Recovery And Reconstitution (CP-10)

cisa_cyber_essentials_your_data_4

Your Data-4

cisa_cyber_essentials_your_systems_3

Your Systems-3

S3 bucket cross-region replication should be enabled

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

Control: S3 bucket cross-region replication should be enabled

Description

Usage

SQL

Tags