Data protection

EBS unencrypted attached volume

Platform(s)
Compliance Frameworks

AWS Foundational Security Best Practices Controls, Brazilian General Data Protection (LGPD), coppa, Data Security Posture Management (DSPM) Best Practices, GDPR, HITRUST, iso_27001_2022, iso_27002_2022, Mitre ATT&CK, New Zealand Information Security Manual, NIST 800-171, NIST 800-53, Orca Best Practices, pipeda

Description

The EBS volume {AwsEc2EbsVolume} which is currently attached to an instance is not encrypted. It is important to encrypt volumes which are in use.