Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Rule: Lambda Functions in a VPC

Ensure all Lambda functions are placed within a Virtual Private Cloud for improved security and networking.

RuleLambda functions should be in a VPC
FrameworkFedRAMP Low Revision 4
Severity
Low

Description of the Rule:

According to FedRAMP Low Revision 4 compliance requirements, Lambda functions should be deployed within a Virtual Private Cloud (VPC) to ensure secure network isolation and protect sensitive data. This rule aims to enhance the security posture of Lambda functions by isolating them from the public internet and allowing communication only through VPC resources.

Troubleshooting Steps (if any):

  1. 1.
    Ensure that the Lambda function is not already associated with a VPC. If it is, it needs to be disassociated before proceeding with the following steps.
  2. 2.
    Verify that you have the necessary permissions to modify Lambda function settings and VPC configurations.

Necessary Code (if applicable):

No specific code is required for this rule as it focuses on the deployment and configuration of Lambda functions within a VPC.

Step-by-Step Guide for Remediation:

  1. 1.
    Sign in to the AWS Management Console.
  2. 2.
    Open the AWS Lambda service.
  3. 3.
    Select the Lambda function that needs to be associated with a VPC.
  4. 4.
    Under the "Configuration" tab, scroll down to the "Network" section.
  5. 5.
    Click on the "Edit" button next to the "VPC" setting.
  6. 6.
    In the "VPC" dropdown menu, select the desired VPC where the Lambda function should be deployed.
  7. 7.
    Choose the appropriate subnets, security groups, and other network settings as per your requirements and organizational policies.
  8. 8.
    Click on the "Save" button to apply the changes.
  9. 9.
    Validate that the Lambda function is now associated with the specified VPC.

Note: Associating a Lambda function with a VPC may introduce additional considerations, such as access to AWS services or internet connectivity. Ensure that the VPC configuration allows necessary outbound and inbound traffic as required by your Lambda function.

Remember to review and test the updated Lambda function to ensure it continues to function as expected within the VPC environment.

Is your System Free of Underlying Vulnerabilities?
Find Out Now