ec2_instance_in_vpc

EC2 instances should be in a VPC

vpc_security_group_restrict_ingress_common_ports_all

VPC security groups should restrict ingress access on ports 20, 21, 22, 3306, 3389, 4333 from 0.0.0.0/0

vpc_security_group_restrict_ingress_ssh_all

VPC security groups should restrict ingress SSH access from 0.0.0.0/0

vpc_security_group_restrict_ingress_tcp_udp_all

VPC security groups should restrict ingress TCP and UDP access from 0.0.0.0/0

Production and non-production environments are segregated to prevent unauthorized access or changes to information assets. (*N/A if no production environment exists at the institution or the institution's third party.)

ffiec_d_3_pc_am_b_10

ffiec_d_3_pc

Preventative Controls (PC)

D3.PC.Am.B.10

aws_compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

AWS Compliance

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Benchmark: D3.PC.Am.B.10

Description

Usage

Controls

Tags

Steampipe

Resources

Community