Control: AWS > NIST 800-53 > SageMaker > SageMaker endpoint configuration encryption should be enabled

To help protect data at rest, ensure encryption with AWS Key Management Service (AWS KMS) is enabled for your SageMaker endpoint.

Resource Types

This control targets the following resource types:

Control Type URI

tmod:@turbot/aws-nist-800-53#/control/types/sageMakerEndpointConfigurationEncryptionAtRestEnabled

Category URI

tmod:@turbot/turbot#/control/categories/complianceNist80053

GraphQL

query controlType(id: "tmod:@turbot/aws-nist-800-53#/control/types/sageMakerEndpointConfigurationEncryptionAtRestEnabled") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-nist-800-53#/control/types/sageMakerEndpointConfigurationEncryptionAtRestEnabled'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-nist-800-53#/control/types/sageMakerEndpointConfigurationEncryptionAtRestEnabled"