IAM Policies

Ensure S3 buckets have default encryption (SSE) enabled or use a bucket policy to enforce it
Description: S3 default encryption provides a way to set the default encryption behavior for an Amazon S3 bucket. You can set default encryption on a bucket...
Fri, 24 Apr, 2020 at 6:50 PM
Ensure RDS instances storage is encrypted
Description:  Amazon Relational Database Service(Amazon RDS) is a web service that managed relational database service. It can encrypt your DB ins...
Thu, 15 Jul, 2021 at 2:05 AM
Ensure RDS instances have backup enabled
Description:  Amazon Relational Database Service (Amazon RDS) is a web service that makes it easier to set up, operate, and scale a relational database in ...
Mon, 27 Apr, 2020 at 7:42 AM
Ensure EBS snapshots are encrypted
Description:  Snapshots are incremental backups, which means that only the blocks on the device that have changed after your most recent snapshot ...
Tue, 27 Jul, 2021 at 3:21 AM
Ensure API Gateway endpoint are not publicly accessible
Description: Amazon API Gateway is an AWS service for creating, publishing, maintaining, monitoring, and securing REST, HTTP, and WebSocket APIs at any sca...
Mon, 6 Sep, 2021 at 10:12 AM
Ensure RDS instances is integrated with CloudWatch Logs
Description:  Amazon RDS is a web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud. It provides c...
Wed, 4 Aug, 2021 at 8:36 AM
Ensure EC2 Instances is not older than 6 months
Description:  Elastic Compute Cloud (EC2) provides scalable computing capacity in the Amazon Web Services (AWS) Cloud. Amazon EC2 enables you to s...
Tue, 20 Jul, 2021 at 7:15 AM
Ensure EC2 Instances is not older than 12 months
Description:  Elastic Compute Cloud (EC2) provides scalable computing capacity in the Amazon Web Services (AWS) Cloud. Amazon EC2 enables you to s...
Fri, 30 Jul, 2021 at 1:28 AM
Ensure there are no secrets in Lambda functions variables
Description: AWS Lambda is serverless compute service that runs your code in response to events and automatically manages the underlying compute resources ...
Thu, 15 Jul, 2021 at 5:04 AM
Ensure there are no secrets in Lambda functions code
Description: AWS Security Hub provides you with a comprehensive view of the security state of your AWS resources. Security Hub collects security data fro...
Tue, 28 Apr, 2020 at 5:36 PM