Rule: EFS File Systems in Backup Plan
Ensure that EFS file systems are included in the backup plan for data protection.
| Rule | EFS file systems should be in a backup plan |
| Framework | NIST Cybersecurity Framework (CSF) v1.1 |
| Severity | ✔ High |
Rule Description
For the NIST Cybersecurity Framework (CSF) v1, it is recommended to include EFS (Elastic File System) file systems in the organization's backup plan. EFS is a scalable, fully managed file storage service provided by Amazon Web Services (AWS). By including EFS file systems in the backup plan, organizations ensure the availability and integrity of their data, and can quickly recover in case of data loss or corruption.
Troubleshooting Steps (if applicable)
- 1.Verify that EFS file systems are created and properly configured within your AWS account.
- 2.Check if your backup plan already includes EFS file systems.
- 3.Verify the backup schedule and retention policy for EFS file systems.
Necessary Codes (if applicable)
No specific codes are required for this rule/policy.
Step-by-Step Guide for Remediation
To include EFS file systems in your backup plan for NIST CSF v1, follow these steps:
- 1.
Verify EFS File Systems: Ensure that the required EFS file systems are created and properly configured within your AWS account. If not, follow the AWS documentation on how to create and configure EFS file systems.
- 2.
Create a Backup Plan: If you don't have a backup plan already, create one by following these steps:
a. Log in to the AWS Management Console.
b. Go to the AWS Backup service page.
c. Click on "Backup plans" in the navigation pane.
d. Click on the "Create backup plan" button.
e. Provide a name and description for your backup plan.
f. Under "Resources included in the backup plan," select the EFS file systems you want to include.
g. Configure the backup schedule and retention policy according to your organization's requirements.
h. Click on the "Create backup plan" button to save the plan.
- 3.
Review and Update Existing Backup Plan: If you already have a backup plan that does not include EFS file systems, you can update it by following these steps:
a. Access the AWS Backup service page in the AWS Management Console.
b. Click on "Backup plans" in the navigation pane.
c. Select the existing backup plan that you want to edit.
d. Click on the "Edit backup plan" button.
e. Under "Resources included in the backup plan," select the EFS file systems you want to include.
f. Review and modify the backup schedule and retention policy as needed.
g. Click on the "Update backup plan" button to save the changes.
- 4.
Monitor Backup Execution and Test Restoration: Regularly monitor the backup execution to ensure that the EFS file systems are being backed up according to your plan. Additionally, periodically test the restoration process to validate the integrity and availability of the backed-up data.
Following these steps will ensure that your EFS file systems are included in your backup plan as per the NIST CSF v1 recommendation, helping you maintain data resilience and readiness in the event of data loss or corruption.