- Newest
- Most votes
- Most comments
Hi,
Re CIS benchmark applied to various AWS services, you want to start by checking out this page: https://docs.aws.amazon.com/securityhub/latest/userguide/cis-aws-foundations-benchmark.html
Then, you will be interested by all official compliance reports in AWS Artifact: https://aws.amazon.com/artifact/
Finally, check out the following page to see the compliance with various standards of the service that you are interested in: https://aws.amazon.com/compliance/programs/
Best,
Didier
Hi lakshmy G
don't need permissions from AWS Support to perform a manual review of AWS best practices and CIS benchmarking for ACM, S3, VPC, ECR, and KMS.
AWS Best Practices:
- Each AWS service has its own documentation section dedicated to best practices. You can find them directly within the service documentation on the AWS website.
CIS Benchmarking:
- The Center for Internet Security (CIS) offers the CIS AWS Foundations Benchmark, which outlines security best practices for various AWS services, including the ones you mentioned. You can download the benchmark document from the CIS website https://docs.aws.amazon.com/securityhub/latest/userguide/cis-aws-foundations-benchmark.html.
AWS Config: This service allows you to automate some aspects of configuration review by setting up rules that check your resources against best practices https://docs.aws.amazon.com/config/
AWS Well-Architected Framework: This framework provides a holistic approach to building secure, high-performing, and cost-optimized infrastructure on AWS https://docs.aws.amazon.com/wellarchitected/latest/userguide/waf.html
Relevant content
- asked 4 years ago
- AWS OFFICIALUpdated 2 months ago
