Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Rule: EBS Volumes in Backup Plan

Ensure EBS volumes are included in a backup plan to maintain data integrity.

RuleEBS volumes should be in a backup plan
FrameworkCISA-cyber-essentials
Severity
High

Rule Description:

The rule mandates that all Elastic Block Store (EBS) volumes should be included in a backup plan as per the CISA Cyber Essentials guidelines. EBS volumes are essential for storing data in Amazon Web Services (AWS), and having a backup plan ensures data resilience and enables recovery in the event of data loss or system failures.

Troubleshooting Steps (if applicable):

  1. 1.
    Verify if EBS volumes are present within your AWS account.
  2. 2.
    Check if any of the EBS volumes are not included in a backup plan.
  3. 3.
    Identify the reason behind not including a specific EBS volume in the backup plan, if applicable.

Necessary Codes (if applicable):

No specific codes are needed for this rule. However, AWS CLI commands can be used for backup plan configuration and management.

Step-by-Step Guide for Remediation:

Check EBS Volumes:

  1. 1.
    Log in to the AWS Management Console.
  2. 2.
    Navigate to the EC2 service.
  3. 3.
    Click on "Volumes" in the left-hand menu.
  4. 4.
    Ensure all the required EBS volumes are listed.

Create a Backup Plan:

  1. 1.
    Open the AWS Management Console.
  2. 2.
    Go to the AWS Backup service.
  3. 3.
    Click on "Create backup plan."
  4. 4.
    Provide a unique name for the backup plan.
  5. 5.
    Specify the desired backup frequency and retention period.
  6. 6.
    Select the target EBS volumes to be included in the backup plan.
  7. 7.
    Configure any additional options, such as lifecycle policies, if necessary.
  8. 8.
    Review the backup plan configuration and click "Create backup plan."

Add EBS Volumes to an Existing Backup Plan:

  1. 1.
    Open the AWS Management Console.
  2. 2.
    Access the AWS Backup service.
  3. 3.
    Select the existing backup plan that needs modification.
  4. 4.
    Click on "Edit plan settings."
  5. 5.
    Choose the desired EBS volumes to be included in the backup plan.
  6. 6.
    Review the changes and click "Update backup plan."

Verify Backup Plan Configuration:

  1. 1.
    Navigate to the AWS Backup service in the AWS Management Console.
  2. 2.
    Select the backup plan in question.
  3. 3.
    Review the included EBS volumes and the backup schedule.
  4. 4.
    Ensure the backup plan meets the requirements of the CISA Cyber Essentials guidelines.

Summary:

Following this rule ensures that all EBS volumes in an AWS account are included in a backup plan, enhancing data resilience and enabling efficient recovery. Appropriate management and review of the backup plan configuration will help maintain compliance with CISA Cyber Essentials guidelines.

Is your System Free of Underlying Vulnerabilities?
Find Out Now