Cloud Defense Logo

Products

Solutions

Company

Rule: DynamoDB Table Point-In-Time Recovery Enabled

This rule ensures that DynamoDB table point-in-time recovery is enabled to protect data.

RuleDynamoDB table point-in-time recovery should be enabled
FrameworkGxP EU Annex 11
Severity
Low

Rule Name: DynamoDB Table Point-in-Time Recovery (PITR) Enabled for GxP EU Annex 11

Description:

This rule ensures that the Point-in-Time Recovery (PITR) feature is enabled for a DynamoDB table in order to meet the compliance requirements of GxP EU Annex 11. PITR enables the continuous backup of the DynamoDB table, allowing for the restoration of data to any point in time within the retention period specified.

Troubleshooting steps:

If the Point-in-Time Recovery is not enabled for the DynamoDB table, perform the following troubleshooting steps:

  1. 1.
    Check if the DynamoDB table is in the correct region required for GxP EU Annex 11 compliance.
  2. 2.
    Verify the IAM credentials used for accessing the DynamoDB table have the necessary permissions to enable PITR.
  3. 3.
    Ensure that the DynamoDB table is not using on-demand backups instead of PITR. If so, take necessary steps to migrate from on-demand backups to PITR.
  4. 4.
    If the table has active PITR, validate the retention period and whether it meets the compliance requirements.

Necessary Codes:

No codes required for this rule.

Step-by-Step Guide for Remediation:

Please follow the steps below to enable Point-in-Time Recovery for a DynamoDB table in compliance with GxP EU Annex 11:

  1. 1.

    Prerequisites:

    • You must have the necessary permissions to modify the DynamoDB table settings.
    • The DynamoDB table must not already have Point-in-Time Recovery enabled.
  2. 2.

    Access the AWS Management Console:

    • Go to the AWS Management Console (https://console.aws.amazon.com/).
  3. 3.

    Navigate to DynamoDB:

    • In the AWS Management Console, search for "DynamoDB" or navigate to the service directly.
  4. 4.

    Select the DynamoDB Table:

    • Select the desired table that needs to have Point-in-Time Recovery enabled.
  5. 5.

    Enable Point-in-Time Recovery:

    • Click on the "Manage Backups" tab in the DynamoDB table overview page.
    • Under "Continuous Backups," click on the "Enable" button.
    • Set the desired retention period for the backups based on the compliance requirements of GxP EU Annex 11.
    • Click on the "Enable" button to confirm and enable Point-in-Time Recovery.
  6. 6.

    Validation:

    • Ensure that Point-in-Time Recovery is enabled for the DynamoDB table.
    • Verify that the retention period is correctly set according to GxP EU Annex 11 compliance requirements.

By following these steps, you will have successfully enabled Point-in-Time Recovery for the DynamoDB table in compliance with GxP EU Annex 11.

Is your System Free of Underlying Vulnerabilities?
Find Out Now