This rule ensures the presence of filters and alarms for managing CMKs.
Rule | Ensure a log metric filter and alarm exist for disabling or scheduled deletion of customer created CMKs |
Framework | cis_v140 |
Severity | ✔ Low |
Rule Description:
This rule ensures that a log metric filter and alarm are in place to detect any disabling or scheduled deletion of customer-created Customer Master Keys (CMKs) within the CIS_V140 environment.
Troubleshooting Steps:
If the log metric filter and alarm are not working as expected, please follow these troubleshooting steps:
Necessary Codes:
No specific code is required for this rule.
Step-by-Step Guide for Remediation:
Note: It is recommended to regularly review the log metric filter, alarm configuration, and associated actions to ensure they remain effective and aligned with any changes in the CIS_V140 environment.