Network misconfigurations

Amazon EMR cluster’s master node with public IP

Platform(s)
Compliance Frameworks

AWS Foundational Security Best Practices Controls, ISO 27701, mpa, NIST 800-171, NIST 800-53, UK Cyber Essentials

Description

EMR, Elastic MapReduce, is a managed cluster platform that simplifies running big data frameworks. EMR cluster is a collection of Amazon Elastic Compute Cloud (Amazon EC2) instances. Each instance in the cluster is called a node. The master node manages the cluster and coordinates the distribution of data and tasks among other nodes for processing. Master node {AwsEmrInstance} has an associated public IP address. Although it allows to create a secure access using SSH tunnel, associating the master node with public IP address directly and not within a VPC or a private subnet that has IPv4 does not stand with security best practices.
Need help?

Get a free Security Risk Assessment. Start today

A screenshot of the Orca platform dashboard summarizing all of your cloud security risks

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo