Loading controls...

Benchmark: System Development Life Cycle (SA-3)

Description

The organization manages the information system using organization-defined system development life cycle, defines and documents information security roles and responsibilities throughout the system development life cycle, identifies individuals having information security roles and responsibilities and integrates the organizational information security risk management process into system development life cycle activities.

Usage

Browse dashboards and select System Development Life Cycle (SA-3):

steampipe dashboard

Or run the benchmarks in your terminal:

steampipe check aws_compliance.benchmark.nist_800_53_rev_4_sa_3

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share aws_compliance.benchmark.nist_800_53_rev_4_sa_3

Controls

CodeBuild project plaintext environment variables should not contain sensitive AWS values
CodeBuild GitHub or Bitbucket source repository URLs should use OAuth
EC2 instances should be managed by AWS Systems Manager

turbot/aws_compliance

Benchmark: System Development Life Cycle (SA-3)

Description

Usage

Controls

Tags

Steampipe

Resources

Community