Control: AWS > HIPAA > Account > At least one multi-region AWS CloudTrail should be present in an account

AWS CloudTrail records AWS Management Console actions and API calls. You can identify which users and accounts called AWS, the source IP address from where the calls were made, and when the calls occurred. CloudTrail will deliver log files from all AWS Regions to your S3 bucket if MULTI_REGION_CLOUD_TRAIL_ENABLED is enabled.

Resource Types

This control targets the following resource types:

AWS > Account

In Your Workspace

Developers

Control Type URI

tmod:@turbot/aws-hipaa#/control/types/cloudTrailMultiRegionTrailEnabled

Category URI

tmod:@turbot/turbot#/control/categories/complianceHipaa

GraphQL

query controlType(id: "tmod:@turbot/aws-hipaa#/control/types/cloudTrailMultiRegionTrailEnabled") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-hipaa#/control/types/cloudTrailMultiRegionTrailEnabled'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-hipaa#/control/types/cloudTrailMultiRegionTrailEnabled"