Rule: DynamoDB Tables Should be in a Backup Plan

DynamoDB tables should be included in a backup plan to ensure data resilience and ability to recover from any unexpected events or failures. This rule is aligned with the CISA Cyber Essentials guidelines, which recommend regular backups as a best practice for maintaining the security and availability of data.

• Verify if backup plans are already configured for DynamoDB tables.
• Check if the backup plans are running successfully.
• Ensure that the required IAM permissions are in place to perform backup and restore operations.

No specific codes are required for this rule.

• Identify the backup frequency and retention requirements for your DynamoDB tables. Take into consideration factors such as data volatility, business needs, and compliance requirements.

• Open the AWS Management Console and navigate to the DynamoDB service.
• Select the desired DynamoDB table that needs to be included in the backup plan.
• Click on the "Backup" tab in the table details.
• Choose the "Create backup plan" button.
• Configure the backup plan by specifying the desired backup frequency, retention duration, and any other relevant settings.
• Save the backup plan.

• Go back to the DynamoDB table and navigate to the "Backup" tab.
• Check if the backup plan you created is listed and active.
• Verify that the backup plan is running at the defined frequency and the backups are being retained for the specified duration.

• To ensure the effectiveness of your backup plan, perform periodic tests to validate the backup and restore procedures.
• Select a test scenario where you can afford to delete or modify some data.
• Take a backup of the DynamoDB table using the backup plan.
• Validate that the backup is successfully created.
• Modify or delete some data in the DynamoDB table.
• Perform a restore operation using the backup created in the previous step.
• Verify that the restored data matches the state before the modifications.

• Regularly check the status of the backup plan to ensure it is running successfully.
• Monitor any error or warning notifications related to the backup plan.
• Troubleshoot and resolve any issues that may arise.

By following these steps, you can implement a backup plan for your DynamoDB tables in accordance with the CISA Cyber Essentials guidelines. This will help safeguard your data and ensure high availability in case of any unforeseen incidents or failures.