AWS SOC 2 Report Rev2 : Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL) (#757) · Issues · Administrator / ticket

AWS SOC 2 Report Rev2 : Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL)

Created by: armorcodegithubpreprod[bot]

Aws compliance report

Report Type: AWS_SOC_Rev2

Report Time: 2021-10-25T13:46:06.071Z

Account: 747582675553

Category: CC7.2: The entity monitors system components and the operation of those components for anomalies that are indicative of malicious acts, natural disasters, and errors affecting the entity's ability to meet its objectives; anomalies are analyzed to determine whether they represent security events.

ID: AWS_CIS_3_11

Recommendation: Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL)

Info link: https://api.lacework.net/ui/documents/AWS_CIS_Foundations_Benchmark.pdf#page=117

Service: lw:cloudtrail

Status: RequiresManualAssessment

Severity: High

Mitigation: Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL)

https://preprod.armorcode.ai/#/findings/6566510