Ensure all Lambda functions are placed within a Virtual Private Cloud for improved security and networking.
Rule | Lambda functions should be in a VPC |
Framework | FedRAMP Low Revision 4 |
Severity | ✔ Low |
Description of the Rule:
According to FedRAMP Low Revision 4 compliance requirements, Lambda functions should be deployed within a Virtual Private Cloud (VPC) to ensure secure network isolation and protect sensitive data. This rule aims to enhance the security posture of Lambda functions by isolating them from the public internet and allowing communication only through VPC resources.
Troubleshooting Steps (if any):
Necessary Code (if applicable):
No specific code is required for this rule as it focuses on the deployment and configuration of Lambda functions within a VPC.
Step-by-Step Guide for Remediation:
Note: Associating a Lambda function with a VPC may introduce additional considerations, such as access to AWS services or internet connectivity. Ensure that the VPC configuration allows necessary outbound and inbound traffic as required by your Lambda function.
Remember to review and test the updated Lambda function to ensure it continues to function as expected within the VPC environment.