Data protection

VM Image not encrypted with CMEK or CSEK

Platform(s)
Compliance Frameworks

CCPA, coppa, CPRA, Data Security Posture Management (DSPM) Best Practices, iso_27001_2022, iso_27002_2022, Mitre ATT&CK, mpa, New Zealand Information Security Manual, NIST 800-171, NIST 800-190, NIST 800-53, PDPA, pipeda, UK Cyber Essentials

Description

VM Operating System Image allows you to create boot disks for your instances. The default choice to encrypt an image is using Google-managed encryption key. However, you have the option to encrypt your image using Customer-Managed Encryption Key (CMEK) or Customer-Supplied Encryption Key (CSEK). It was detected that VM Image '{GcpVmImage}' is not encrypted using customer encryption keys. Customer encryption keys give you the ability to fully manage your encryption keys, including policies, encryption rotation, access, tags, and more.
Need help?

Get a free Security Risk Assessment. Start today

A screenshot of the Orca platform dashboard summarizing all of your cloud security risks

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo