Control: AWS > CIS v1 > 3 Monitoring
Covers recommendations addressing Monitoring.
Primary Policies
The following policies can be used to configure this control:
- 3 Monitoring > 3.01 Ensure a log metric filter and alarm exist for unauthorized API calls (Scored)
- 3 Monitoring > 3.02 Ensure a log metric filter and alarm exist for Management Console sign-in without MFA (Scored)
- 3 Monitoring > 3.03 Ensure a log metric filter and alarm exist for usage of "root" account (Scored)
- 3 Monitoring > 3.04 Ensure a log metric filter and alarm exist for IAM policy changes (Scored)
- 3 Monitoring > 3.05 Ensure a log metric filter and alarm exist for CloudTrail configuration changes (Scored)
- 3 Monitoring > 3.06 Ensure a log metric filter and alarm exist for AWS Management Console authentication failures (Scored)
- 3 Monitoring > 3.07 Ensure a log metric filter and alarm exist for disabling or scheduled deletion of customer created CMKs (Scored)
- 3 Monitoring > 3.08 Ensure a log metric filter and alarm exist for S3 bucket policy changes (Scored)
- 3 Monitoring > 3.09 Ensure a log metric filter and alarm exist for AWS Config configuration changes (Scored)
- 3 Monitoring > 3.10 Ensure a log metric filter and alarm exist for security group changes (Scored)
- 3 Monitoring > 3.11 Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL) (Scored)
- 3 Monitoring > 3.12 Ensure a log metric filter and alarm exist for changes to network gateways (Scored)
- 3 Monitoring > 3.13 Ensure a log metric filter and alarm exist for route table changes (Scored)
- 3 Monitoring > 3.14 Ensure a log metric filter and alarm exist for VPC changes (Scored)
- 3 Monitoring
Category
In Your Workspace
Developers
- tmod:@turbot/aws-cisv1#/control/types/s03
- tmod:@turbot/cis#/control/categories/cis
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-cisv1#/control/types/s03"
Get Controls
Control Type URI
Category URI
GraphQL
CLI