aws_compliance

AWS Compliance

You can do real-time monitoring of API calls directing CloudTrail logs to CloudWatch Logs and establishing corresponding metric filters and alarms.Security Hub recommends that you create a metric filter and alarm for root login attempts. Monitoring for root account logins provides visibility into the use of a fully privileged account and an opportunity to reduce the use of it.

log_metric_filter_root_login

all_controls_cloudwatch

CloudWatch

article_25

Article 25 Data protection by design and by default

hipaa_final_omnibus_security_rule_2013_164_308_a_6_i

164.308(a)(6)(i) Security incident procedures

hipaa_final_omnibus_security_rule_2013_164_308_a_6_ii

164.308(a)(6)(ii) Response and reporting

hipaa_security_rule_2003_164_308_a_6_i

hipaa_security_rule_2003_164_308_a_6_ii

164.308(a)(6)(ii) Response and Reporting

nist_800_171_rev_2_3_12_1

3.12.1 Periodically assess the security controls in organizational systems to determine if the controls are effective in their application

nist_800_171_rev_2_3_12_3

3.12.3 Monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls

nist_800_171_rev_2_3_12_4

3.12.4 Develop, document, and periodically update system security plans that describe system boundaries, system environments of operation, how security requirements are implemented, and the relationships with or connections to other systems

nist_csf_de_cm_2

DE.CM-2

nist_csf_id_ra_1

ID.RA-1

nist_csf_id_ra_5

ID.RA-5

nist_csf_id_sc_4

ID.SC-4

pci_dss_v321_requirement_7_2_1

7.2.1 Confirm that access control systems are in place on all system components

Ensure a log metric filter and alarm exist for usage of 'root' account

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Control: Ensure a log metric filter and alarm exist for usage of 'root' account

Description

Usage

SQL

Tags

Steampipe

Resources

Community