Logging and monitoring

An RDS event subscription for critical security group events does not exist

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
  • ,
  • Brazilian General Data Protection (LGPD)
  • ,
  • CCPA
  • ,
  • coppa
  • ,
  • CPRA
  • ,
  • Data Security Posture Management (DSPM) Best Practices
  • ,
  • GDPR
  • ,
  • HITRUST
  • ,
  • iso_27001_2022
  • ,
  • iso_27002_2022
  • ,
  • Mitre ATT&CK
  • ,
  • New Zealand Information Security Manual
  • ,
  • NIST 800-171
  • ,
  • NIST 800-53
  • ,
  • PDPA
  • ,
  • pipeda
  • ,
  • UK Cyber Essentials

Description

RDS event subscription resource allows you to receive notifications for RDS events through an Amazon Simple Notification Service (SNS). RDS event subscriptions for security groups events are designed to provide incident notification of event changes triggered at the database security groups. Events such as configuration change, and failure are critical security group events. We detected that AWS account {CloudAccount} does not have an RDS event notifications subscription enabled for critical database security group events.