CIS Control 6

Ensure CloudTrail log file validation is enabled
Profile Applicability: Level 2 Description:  CloudTrail log file validation creates a digitally signed digest file containing a hash of each log that Clou...
Thu, 9 Sep, 2021 at 8:58 AM
Ensure CloudTrail logs are encrypted at rest using KMS CMKs
Profile Applicability: Level 2 Description:  AWS CloudTrail is a web service that records AWS API calls for an account and makes those logs available t...
Mon, 13 Sep, 2021 at 10:06 AM
Ensure rotation for customer created CMKs is enabled
Profile Applicability: Level 2 Description: AWS Key Management Service (KMS) makes it easy for you to create and manage cryptographic keys and control ...
Mon, 13 Sep, 2021 at 10:24 AM