By using AWS re:Post, you agree to the Terms of Use

check best pratices ans security compliance for AWs accounts

0

Hi team,

we want to do some audits on all our projects using AWS accounts,

Are there any first items to start checking or any specific checklist to go over when doing the audit to make sure that best practices and security are implemented?

Thank you!

2 Answers
1

In addition to what Matt-B said in his answer, we also offer the AWS Well-Architected Tool -- which will allow you to run through the six pillars (which includes a Secuirty pillar) of our Well-Architected Framework for your workloads. This tool will generate actionable findings for you and your team to prioritize and tackle and is closer to a "checklist" style.

profile picture
answered 10 days ago
0

I would start by looking at The AWS Foundational Security Best Practices standard. The AWS Foundational Security Best Practices standard is a set of controls that detect when your deployed accounts and resources deviate from security best practices. See https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp.html

You can enable this control in Security Hub and start to get a good idea of how your environment fairs against AWS Foundational best practices. See https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-controls-finding-generation.html

profile picture
answered 10 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions