Vendor services misconfigurations

Aws Guard Duty Should Be Enabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

AWS GuardDuty is a managed threat detection service that continuously monitors your VPC flow logs, AWS CloudTrail event logs and DNS logs for malicious or unauthorized behavior. This service is not supported in the following Regions: Africa (Cape Town), China (Beijing), China (Ningxia), Europe (Milan), Middle East (Bahrain), AWS GovCloud (US-East). It was detected that the Cloud Account - {CloudAccount} is disabled in all available regions.

  • Recommended Mitigation

    It is recommended to consider to enable Amazon GuardDuty service on Cloud Account - {CloudAccount}, in all supported regions in order to protect your AWS environment and infrastructure

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.