top of page
SSM.4
SSM documents should not be public
Severity
Cloud Platforms
Resources
Related Standards
Automated
CRITICAL
AWS
AWS Systems Manager
AWS Foundational Best Practice, CIS v8, CDR, ISO27001, SOC2, NIST CSF, NIST.800-53.r5,
This control checks whether AWS Systems Manager documents that the account owns are public. This control fails if SSM documents that have Self" as the owner are public."
bottom of page