Control: CloudTrail event data should be stored encrypted with KMS CMK
Description
This control checks whether a CloudTrail event data store is encrypted with KMS CMK.
Usage
Run the control in your terminal:
powerpipe control run terraform_aws_compliance.control.cloudtrail_event_data_store_encrypted_with_kms_cmk
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run terraform_aws_compliance.control.cloudtrail_event_data_store_encrypted_with_kms_cmk --share
SQL
This control uses a named query:
cloudtrail_event_data_store_encrypted_with_kms_cmk