Rule: DynamoDB Tables in a Backup Plan

Ensure all DynamoDB tables are included in a backup plan for data recovery and protection.

Rule	DynamoDB tables should be in a backup plan
Framework	CISA-cyber-essentials
Severity	✔ Medium

Rule Description:

The rule states that all DynamoDB tables should be included in a backup plan as part of the CISA Cyber Essentials framework. Backup plans protect against potential data loss, equipment failure, or accidental deletion of tables and their contents in DynamoDB.

Troubleshooting Steps:

If the DynamoDB tables are not included in a backup plan, follow these troubleshooting steps:

1.

Verify if the backup plan exists: Check if a backup plan is already created for the DynamoDB tables. Use the AWS Management Console, AWS CLI, or SDKs to confirm the presence of a backup plan.

2.

Ensure appropriate IAM permissions: Ensure that the AWS Identity and Access Management (IAM) role associated with the table has sufficient permissions to create backup plans and perform necessary backup and restore actions.

3.

Check table status: Verify the status of the DynamoDB tables to ensure they are active and not experiencing any issues. If there are any issues, resolve them before proceeding with the backup plan.

Necessary Codes:

In this case, there are no specific codes required as the implementation of backup plans for DynamoDB tables involves using AWS Management Console or AWS CLI commands.

Step-by-Step Guide for Remediation:

Follow the steps below to include DynamoDB tables in a backup plan for CISA Cyber Essentials:

1.

Open the AWS Management Console and navigate to the DynamoDB service.

2.

Identify the DynamoDB tables that need to be included in the backup plan.

3.
Create a backup plan:
- Click on "Backup plans" in the left sidebar menu.
- Click on "Create backup plan" button.
- Provide a unique name for the backup plan.
- Configure the backup plan settings, such as frequency, retention period, and backup window.
- Select the DynamoDB tables you identified in Step 2 to include them in the backup plan.
- Review the configurations and click on "Create backup plan" to create the plan.

4.
Validate the backup plan:
- Go to the "Backup plans" page and locate the newly created backup plan.
- Verify that the DynamoDB tables are listed as included in the backup plan.
- Review the schedule and retention settings to ensure they are aligned with the CISA Cyber Essentials requirements.

5.
Monitor backup status:
- Utilize the AWS Management Console or AWS CLI to monitor the backup status of the included DynamoDB tables.
- Regularly check the backup plan executions and ensure that they are running successfully without any errors.

Following these steps will ensure that all DynamoDB tables are included in a backup plan as required by the CISA Cyber Essentials framework, providing protection against data loss and enabling restoration if necessary.

Rule: DynamoDB Tables in a Backup Plan

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Rule Description:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Troubleshooting Steps:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Necessary Codes:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step-by-Step Guide for Remediation:

Is your System Free of Underlying Vulnerabilities? Find Out Now

Rule Description:

Troubleshooting Steps:

Necessary Codes:

Step-by-Step Guide for Remediation:

Is your System Free of Underlying Vulnerabilities?
Find Out Now