CIS Control 6

Ensure CloudTrail log file validation is enabled
Profile Applicability: Level 2 Description:  CloudTrail log file validation creates a digitally signed digest file containing a hash of each log that C...
Sun, 29 Mar, 2020 at 11:43 AM
Ensure CloudTrail logs are encrypted at rest using KMS CMKs
Profile Applicability: Level 2 Description:  AWS CloudTrail is a web service that records AWS API calls for an account and makes those logs available t...
Sun, 29 Mar, 2020 at 11:44 AM
Ensure rotation for customer created CMKs is enabled
Profile Applicability: Level 2 Description:  AWS Key Management Service (KMS) allows customers to rotate the backing key which is key material stored w...
Sun, 29 Mar, 2020 at 11:45 AM