CIS Control 1

1.15 Ensure IAM Users Receive Permissions Only Through Groups (Automated)
Profile Applicability: Level 1 Description: AWS IAM users should receive permissions only through IAM groups, rather than having directly attached polici...
Mon, 17 Feb, 2025 at 6:37 AM
1.16 Ensure IAM Policies with Full ":" Administrative Privileges Are Not Attached (Automated)
Profile Applicability: Level 1 Description: AWS IAM policies define permissions for users, groups, and roles. The principle of least privilege states tha...
Mon, 17 Feb, 2025 at 6:53 AM
1.20 Ensure That IAM Access Analyzer Is Enabled for All Regions (Automated)
Profile Applicability: Level 1 Description: IAM Access Analyzer is an AWS security tool that helps identify unintended access to AWS resources across IAM...
Mon, 17 Feb, 2025 at 11:25 PM
1.3 Ensure Security Questions Are Registered in the AWS Account (Manual)
Profile Applicability: Level 1 Description: AWS provides account owners with the ability to set security questions in the AWS Support portal. These secur...
Wed, 19 Feb, 2025 at 2:51 AM
1.4 Ensure No 'Root' User Account Access Key Exists (Automated)
Profile Applicability: Level 1 Description: The AWS root user is the most privileged account in an AWS environment. AWS Access Keys provide programmatic ...
Wed, 19 Feb, 2025 at 3:23 AM
1.6 Ensure Hardware MFA is Enabled for the 'Root' User Account (Manual)
Profile Applicability: Level 2 Description: The AWS root user account has full administrative privileges over an AWS account. Multi-Factor Authentication...
Wed, 19 Feb, 2025 at 3:28 AM
1.8 Ensure IAM Password Policy Requires Minimum Length of 14 or Greater (Automated)
Profile Applicability: Level 1 Description: AWS IAM password policies enforce password complexity requirements for users. It is recommended that the p...
Wed, 19 Feb, 2025 at 3:39 AM
1.9 Ensure IAM Password Policy Prevents Password Reuse (Automated)
Profile Applicability: Level 1 Description: AWS IAM password policies can be configured to prevent users from reusing old passwords. It is recommended th...
Wed, 19 Feb, 2025 at 3:47 AM
1.14 Ensure Access Keys are Rotated Every 90 Days or Less (Automated)
Profile Applicability: Level 1 Description: AWS access keys (consisting of an access key ID and a secret access key) are used for programmatic access to ...
Wed, 19 Feb, 2025 at 3:55 AM
1.17 Ensure a Support Role Has Been Created to Manage Incidents with AWS Support (Automated)
Profile Applicability: Level 1 Description AWS provides a Support Center for incident response, technical support, and customer service. To securely mana...
Wed, 19 Feb, 2025 at 4:03 AM