top of page
A plus black.png

AWS Foundational Security Best Practice

ACM.1

Imported and ACM-issued certificates should be renewed after a specified time period

Read More

APIGateway.2

API Gateway REST API stages should be configured to use SSL certificates for backend authentication

Read More

APIGateway.4

API Gateway should be associated with a WAF Web ACL

Read More

APIGateway.8

API Gateway routes should specify an authorization type

Read More

Account.1

Security contact information should be provided for an AWS account.

Read More

AutoScaling.2

Amazon EC2 Auto Scaling group should cover multiple Availability Zones

Read More

APIGateway.1

API Gateway REST and WebSocket API execution logging should be enabled

Read More

APIGateway.3

API Gateway REST API stages should have AWS X-Ray tracing enabled

Read More

APIGateway.5

API Gateway REST API cache data should be encrypted at rest

Read More

APIGateway.9

This control checks if Amazon API Gateway V2 stages have access logging configured. This control fails if access log settings aren’t defined.

Read More

AutoScaling.1

Auto scaling groups associated with a Classic Load Balancer should use load balancer health checks

Read More

AutoScaling.3

Auto Scaling group launch configurations should configure EC2 instances to require Instance Metadata Service Version 2 (IMDSv2)

Read More
bottom of page