Check if DynamoDB table point-in-time recovery is enabled for compliance.
Rule | DynamoDB table point-in-time recovery should be enabled |
Framework | CISA-cyber-essentials |
Severity | ✔ Low |
DynamoDB Table Point-in-Time Recovery Rule
Rule Description:
The DynamoDB table point-in-time recovery (PITR) should be enabled for CISA Cyber Essentials compliance. PITR allows you to restore your table to any point in time within the specified retention period, helping to protect against accidental data deletion or corruption. Enabling PITR ensures data availability and facilitates data recovery as per the CISA Cyber Essentials requirements.
Troubleshooting Steps:
If PITR is not enabled for the DynamoDB table, follow these troubleshooting steps:
Necessary Code:
The following AWS SDK code snippet demonstrates enabling PITR for a DynamoDB table using the AWS CLI:
aws dynamodb update-continuous-backups --table-name TableName --point-in-time-recovery-specification PointInTimeRecoveryEnabled=true
Replace
TableName
with the name of your DynamoDB table.Remediation Steps:
To enable PITR for a DynamoDB table, follow the step-by-step guide:
Option 1: Using the AWS Management Console
Option 2: Using the AWS CLI
aws dynamodb update-continuous-backups --table-name TableName --point-in-time-recovery-specification PointInTimeRecoveryEnabled=true
Replace TableName
with the name of your DynamoDB table.Conclusion:
Enabling DynamoDB table point-in-time recovery is crucial to comply with CISA Cyber Essentials requirements. By following the provided troubleshooting steps, necessary code, and remediation guide, you can ensure that PITR is enabled for the DynamoDB table. This adds an additional layer of data protection, enabling easy recovery in case of accidental data loss or corruption.