guardduty_enabled

GuardDuty should be enabled

iam_account_password_policy_strong_min_reuse_24

IAM password policies for users should have strong configurations

iam_user_access_key_age_90

IAM user access keys should be rotated at least every 90 days

iam_user_in_group

IAM users should be in at least one group

iam_user_unused_credentials_90

IAM user credentials that have not been used in 90 days should be disabled

secretsmanager_secret_rotated_as_scheduled

Secrets Manager secrets should be rotated as per the rotation schedule

securityhub_enabled

AWS Security Hub should be enabled for an AWS Account

The organization employs automated mechanisms to support the management of information system accounts.

nist_800_53_rev_4_ac_2_1

nist_800_53_rev_4_ac_2

Account Management (AC-2)

AC-2(1) Automated System Account Management

aws_compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

AWS Compliance

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Benchmark: AC-2(1) Automated System Account Management

Description

Usage

Controls

Tags

Steampipe

Resources

Community