CloudWatch alarms not monitoring VPC internet gateway configuration changes

Logging and monitoring

CloudWatch alarms not monitoring VPC internet gateway configuration changes

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
hdh
HITRUST
ISO/IEC 27001
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
PDPA
UK Cyber Essentials

Description

AWS CloudWatch alarms feature allows to watch metrics and receive notifications when metrics fall outside the settings you configured. We have identified that the cloud account ""{CloudAccount}"" is not configured with CloudWatch metrics to monitor VPC internet gateway configuration changes.

Recommended Mitigation

Ensure cloudwatch metric is set to monitor VPC internet gateway configuration changes. more details can be found in <a href="https://docs.aws.amazon.com/awscloudtrail/latest/userguide/send-cloudtrail-events-to-cloudwatch-logs.html" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/awscloudtrail/latest/userguide/send-cloudtrail-events-to-cloudwatch-logs.html</a>

CloudWatch alarms not monitoring VPC internet gateway configuration changes

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS