CloudTrail Rule Set Compliance Matrix

Follow

 

CloudTrail Rule Sets Overview

Threat Stack provides a CloudTrail Rule Set to help you get started on your security journey. We recognize that the CloudTrail Rule Set may not meet your organization's specific needs and so we created alternate compliance rule sets based on:

  • HIPAA
  • ISO 27001
  • MPAA
  • PCI
  • SOC2

CloudTrail Rule Sets

To help clarify how these other compliance rule sets compare to the CloudTrail Base Rule Set, we created comparison charts for each compliance rule set.

HIPAA ISO 27001 MPAA PCI SOC2
Base Rule Set HIPAA Rule Set Supports Criteria  Severity
CloudTrail : Admin Activity N/A N/A 2
CloudTrail : AWS VPC Changes N/A N/A 2
CloudTrail : DirectConnect Policy Changes N/A N/A 2
CloudTrail : IAM Policy Changes N/A N/A 1
CloudTrail : ELB Changes  N/A N/A 2
CloudTrail : Route53 DNS Record Changes N/A N/A 2
CloudTrail : S3 File Tracking HIPAA: CloudTrail: S3 File Tracking HIPAA 164.312(c)(1) 2
CloudTrail : S3 Security Activity N/A N/A 2
CloudTrail : Security Group Changes HIPAA: CloudTrail: Security Group Changes HIPAA 164.312(c)(1) 2
CloudTrail : Wide Open Security Group HIPAA: CloudTrail: Wide Open Security Group HIPAA 164.312(c)(1) 1
CloudTrail : Console Login : MFA Not Used HIPAA: CloudTrail: Console Login (MFA Not Used) HIPAA 164.308(a)(5)(ii)(C) 2
CloudTrail : Non-Standard VPC N/A N/A 3
CloudTrail : AWS Kinesis Service N/A N/A 3
CloudTrail : Access Denied N/A N/A 3
CloudTrail : Admin Activity N/A N/A 1
CloudTrail : Certificate Manager Changes N/A N/A 2
CloudTrail : Console Login by Root N/A N/A 1
CloudTrail : EC2 Service Policy Changes N/A N/A 2
CloudTrail : Glacier Policy and Vault Changes N/A N/A 2
CloudTrail : Instances in non-standard region N/A N/A 3
CloudTrail : Key Activity N/A N/A 2
CloudTrail : Lambda Permission Changes N/A N/A 2
CloudTrail : Non-Standard Image Id N/A N/A 3
CloudTrail : RDS Changes N/A N/A 3
CloudTrail : SES Changes N/A N/A 2
CloudTrail : SNS Changes N/A N/A 2
CloudTrail : SQS Changes N/A N/A 2
CloudTrail : Too many API calls N/A N/A 3
 
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.