Security Policies
Note:Click the link in the Policy Name column to access the corresponding policy template.
Gain visibility and control across all your public and/or private cloud environments with our security policies. Improve security across your applications, data, and associated infrastructure by finding security vulnerabilities before your customers do.
|
Policy Name |
Description |
|
Reports and remediates any Classic Load Balancers (ELBs) and Application load Balancers (ALBs) that are Internet-facing. |
|
|
Checks for buckets that are open to everyone. |
|
|
Checks for database services that are publicly accessible and terminate them after approval. |
|
|
Checks for buckets that do not have server_access_logging enabled. |
|
|
Reports any AWS App/Network Load Balancers w/Internet-facing Unencrypted Listeners. |
|
|
Reports any AWS Classic Load Balancers w/Internet-facing Unencrypted Listeners. |
|
|
Reports any Relational Database Service (RDS) instances that are unencrypted. |
|
|
Reports any S3 buckets in AWS that are unencrypted and provide the option to set the default encryption after approval. |
|
|
Reports any Elastic Block Store (EBS) volumes in AWS that are unencrypted. |
|
|
Checks for database services that are publicly accessible and terminate them after approval. |
|
|
Checks for buckets that are open to the public. |
|
|
Sends email notifications when a security group has ports open to the world. |
|
|
Sends email notifications when a security group has no description. |
|
|
Sends email notifications when a security group has unapproved open ports. |
|
|
Sends email notifications a security group has icmp enabled. |