Rule: DynamoDB Tables in a Backup Plan
Ensure all DynamoDB tables are included in a backup plan to avoid data loss and ensure business continuity.
| Rule | DynamoDB tables should be in a backup plan |
| Framework | CISA-cyber-essentials |
| Severity | ✔ Medium |
DynamoDB Backup Plan for CISA-Cyber Essentials
Description:
DynamoDB tables should be included in a backup plan as part of the CISA-Cyber Essentials requirements. This ensures that critical data stored in DynamoDB tables is regularly backed up, allowing for the quick and efficient recovery of data in the event of accidental deletion, data corruption, or system failures.
Troubleshooting Steps:
If any issues are encountered while setting up or executing the DynamoDB backup plan, consider the following troubleshooting steps:
- 1.Validation Errors: Make sure that the backup plan configuration adheres to the required rules and policies specified by CISA-Cyber Essentials.
- 2.Access Control: Ensure that the IAM roles or users associated with the backup plan have the necessary permissions to perform backup and restore operations on DynamoDB tables.
- 3.Resource Limitations: Check if there are any resource limits in place that might prevent the successful backup and restoration of DynamoDB tables.
- 4.Network Connectivity: Verify that the DynamoDB service has appropriate network connectivity to allow backup and restore operations.
Necessary Codes (if applicable):
There are no specific codes required for setting up DynamoDB backup plans for CISA-Cyber Essentials as it primarily involves configuring backup plans through the AWS Management Console.
Step-by-Step Guide for Remediation:
- 1.
Identify Critical DynamoDB Tables: Determine the DynamoDB tables that contain critical data that must be backed up as part of the CISA-Cyber Essentials requirements.
- 2.
Access AWS Management Console: Log in to the AWS Management Console using appropriate credentials.
- 3.
Navigate to the DynamoDB Service: Go to the DynamoDB service within the AWS Management Console.
- 4.
Create a Backup Plan: Follow the steps below to create a backup plan:
- Click on the "Backup" tab in the DynamoDB service dashboard.
- Click on the "Create backup plan" button.
- Specify a unique name for the backup plan.
- Choose the frequency and timing for the backups based on your requirements.
- Select the DynamoDB tables that need to be included in the backup plan.
- Configure additional options such as retention period, backup window, etc., as per your organization's needs.
- Save the backup plan configuration.
- 5.
Validate Backup Plan: Ensure that the backup plan has been successfully created, and all specified DynamoDB tables are included.
- 6.
Monitor Backup Execution: Regularly monitor the execution of backup plans to ensure that they are running without errors and backups are being created as per the defined schedule.
- 7.
Test Backup Restoration: Periodically perform test restoration of backups to validate the process and verify the integrity of backed-up data.
- 8.
Review and Update Backup Plan: Review the backup plan periodically to assess any changes in the criticality of DynamoDB tables and make necessary updates to the backup plan configuration if required.
Following the outlined steps will ensure that DynamoDB tables are included in a backup plan, meeting the CISA-Cyber Essentials requirements and ensuring the availability of critical data in case of any unforeseen issues.