aws_compliance

AWS Compliance

Manage access to resources in the AWS Cloud by ensuring common ports are restricted on Amazon Elastic Compute Cloud (Amazon EC2) Security Groups.

vpc_security_group_restrict_ingress_tcp_udp_all

cisa_cyber_essentials_your_data_2

Your Data-2

cisa_cyber_essentials_your_systems_3

Your Systems-3

fedramp_low_rev_4_ac_17

Remote Access (AC-17)

fedramp_low_rev_4_cm_2

Baseline Configuration (CM-2)

fedramp_low_rev_4_sc_7

Boundary Protection (SC-7)

fedramp_moderate_rev_4_ac_17_1

AC-17(1) Automated Monitoring/Control

fedramp_moderate_rev_4_ac_21_b

AC-21(b)

fedramp_moderate_rev_4_ac_4

Information Flow Enforcement (AC-4)

fedramp_moderate_rev_4_cm_2

fedramp_moderate_rev_4_sc_4

Information In Shared Resources (SC-4)

fedramp_moderate_rev_4_sc_7

fedramp_moderate_rev_4_sc_7_3

SC-7(3) Access Points

ffiec_d_3_pc_am_b_10

D3.PC.Am.B.10

ffiec_d_3_pc_im_b_1

D3.PC.Im.B.1

ffiec_d_3_pc_im_b_2

D3.PC.IM.B.2

ffiec_d_3_pc_im_b_6

D3.PC.Im.B.6

ffiec_d_4_c_co_b_2

D4.C.Co.B.2

gxp_21_cfr_part_11_11_10_d

11.10(d)

gxp_21_cfr_part_11_11_10_g

11.10(g)

gxp_21_cfr_part_11_11_10_k

11.10(k)

hipaa_164_308_a_1_ii_b

164.308(a)(1)(ii)(B) Risk Management

hipaa_164_312_e_1

164.312(e)(1) Transmission security

nist_800_171_rev_2_3_13_1

3.13.1 Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the external boundaries and key internal boundaries of organizational systems

nist_800_171_rev_2_3_13_5

3.13.5 Implement subnetworks for publicly accessible system components that are physically or logically separated from internal networks

nist_800_171_rev_2_3_13_6

3.13.6 Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit by exception)

nist_800_171_rev_2_3_1_1

3.1.1 Limit system access to authorized users, processes acting on behalf of authorized users, and devices (including other systems)

nist_800_171_rev_2_3_1_14

3.1.14 Route remote access via managed access control points

nist_800_171_rev_2_3_1_2

3.1.2 Limit system access to the types of transactions and functions that authorized users are permitted to execute

nist_800_171_rev_2_3_1_20

3.1.20 Verify and control/limit connections to and use of external systems

nist_800_171_rev_2_3_1_3

3.1.3 Control the flow of CUI in accordance with approved authorizations

nist_800_171_rev_2_3_4_7

3.4.7 Restrict, disable, or prevent the use of nonessential programs, functions, ports, protocols, and services

nist_800_53_rev_4_ac_4

nist_800_53_rev_4_sc_7

nist_800_53_rev_4_sc_7_3

nist_800_53_rev_5_ac_17_1

AC-17(1) Monitoring And Control

nist_800_53_rev_5_ac_17_10

AC-17(10) Authenticate Remote Commands

nist_800_53_rev_5_ac_17_4_a

AC-17(4)(a)

nist_800_53_rev_5_ac_17_9

AC-17(9) Disconnect Or Disable Access

nist_800_53_rev_5_ac_17_b

AC-17(b)

nist_800_53_rev_5_ac_4_21

AC-4(21) Physical Or Logical Separation Of Infomation Flows

nist_800_53_rev_5_sc_7_11

SC-7(11) Restrict Incoming communications Traffic

nist_800_53_rev_5_sc_7_12

SC-7(12) Host-Based Protection

nist_800_53_rev_5_sc_7_16

SC-7(16) Prevent Discovery Of System Components

nist_800_53_rev_5_sc_7_21

SC-7(21) Isolation Of System Components

nist_800_53_rev_5_sc_7_24_b

SC-7(24)(b)

nist_800_53_rev_5_sc_7_5

SC-7(5) Deny By Default — Allow By Exception

nist_800_53_rev_5_sc_7_7

SC-7(7) Split Tunneling For Remote Devices

nist_800_53_rev_5_sc_7_a

SC-7(a)

nist_800_53_rev_5_sc_7_c

SC-7(c)

nist_csf_de_ae_1

DE.AE-1

nist_csf_pr_ac_3

PR.AC-3

nist_csf_pr_ac_5

PR.AC-5

nist_csf_pr_pt_4

PR.PT-4

rbi_cyber_security_annex_i_5_1

Annex I (5.1)

VPC security groups should restrict ingress TCP and UDP access from 0.0.0.0/0

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Control: VPC security groups should restrict ingress TCP and UDP access from 0.0.0.0/0

Description

Usage

SQL

Tags

Steampipe

Resources

Community