Cloud Infrastructure Policy: Ensure CloudTrail logs are encrypted at rest using KMS CMKs

Terraform Policy

Ensure CloudTrail logs are encrypted at rest using KMS CMKs

GUARDRAIL "[CIS - AWS] 3.5 Ensure CloudTrail logs are encrypted at rest using KMS CMKs"
  WHEN aws_cloudtrail
    REQUIRE kms_key_id EXISTS
  OVERRIDE WITH APPROVAL @security

Import into Resourcely

Made by

Resourcely

Provider

AWS

Compliance Standards

(see all)

AWS CIS v3.0.0