Benchmark: D3.DC.Th.B.1
Description
Independent testing (including penetration testing and vulnerability scanning) is conducted according to the risk assessment for external-facing systems and the internal network.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-compliance
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select D3.DC.Th.B.1.
Run this benchmark in your terminal:
powerpipe benchmark run aws_compliance.benchmark.ffiec_d_3_dc_th_b_1
Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_compliance.benchmark.ffiec_d_3_dc_th_b_1 --share
Controls
- GuardDuty should be enabled
- AWS Security Hub should be enabled for an AWS Account
- SSM managed instance patching should be compliant