Data protection

EBS Snapshot unencrypted

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Brazilian General Data Protection (LGPD), GDPR, HITRUST, ISO/IEC 27001, Mitre ATT&CK v12, New Zealand Information Security Manual, NIST 800-171, NIST 800-53, Orca Best Practices

Description

The snapshot {AwsEc2EbsSnapshot} is not encrypted.
  • Recommend icon

    Recommended Mitigation

    Enable encryption by default for EBS resources. See more here: <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default" target="_blank" rel="noopener noreferrer">https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html#encryption-by-default</a>

Need help?

Get a free Security Risk Assessment. Start today

A screenshot of the Orca platform dashboard summarizing all of your cloud security risks

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo