CIS Control 4

4.6 Ensure AWS Management Console Authentication Failures Are Monitored (Manual)
Profile Applicability: Level 2 Description: AWS CloudTrail enables real-time monitoring of API calls by logging events to CloudWatch Logs or an external ...
Tue, 18 Feb, 2025 at 1:23 AM
4.5 Ensure CloudTrail Configuration Changes Are Monitored (Manual)
Profile Applicability: Level 1 Description: AWS CloudTrail logs all API activity within an AWS account. Monitoring changes to CloudTrail configuration en...
Tue, 18 Feb, 2025 at 2:10 AM
4.4 Ensure IAM Policy Changes Are Monitored (Manual)
Profile Applicability: Level 1 Description: AWS Identity and Access Management (IAM) policies define permissions for users, groups, and roles. Any modifi...
Tue, 18 Feb, 2025 at 2:18 AM
4.1 Ensure unauthorized API calls are monitored
Profile Applicability: Level 2 Description: Real-time monitoring of unauthorized API calls can be achieved by directing AWS CloudTrail logs to Amaz...
Wed, 19 Feb, 2025 at 7:45 AM
4.2 Ensure Management Console Sign-In Without MFA is Monitored (Manual)
Profile Applicability: Level 1 Description: Monitoring AWS Management Console sign-ins without Multi-Factor Authentication (MFA) is critical for security...
Wed, 19 Feb, 2025 at 7:58 AM
4.3 Ensure Usage of the Root Account is Monitored (Manual)
Profile Applicability: Level 1 Description: Real-time monitoring of AWS Root account usage can be achieved by directing CloudTrail logs to Amazon CloudWa...
Wed, 19 Feb, 2025 at 11:12 PM