top of page

SSM.4

SSM documents should not be public

Severity

Cloud Platforms

Resources

Related Standards

Automated

CRITICAL

AWS

AWS Systems Manager

AWS Foundational Best Practice, CIS v8, CDR, ISO27001, SOC2, NIST CSF, NIST.800-53.r5,

This control checks whether AWS Systems Manager documents that the account owns are public. This control fails if SSM documents that have Self" as the owner are public."

bottom of page