Data at risk

EMR Cluster is publicly accessible

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

The EMR Cluster {AwsEmrCluster} is publicly accessible. Emr cluster should only be accessible from private endpoints in order to prevent unauthorized access.

  • Recommended Mitigation

    It is recommended to prohibit security group rules that allow inbound traffic from all public sources. It can be done by enabling Block Public Access configuration and prevent your account users from launching clusters with security group rules that open ports for inbound traffic from IPv4 0.0.0.0/0 or IPv6 ::/0.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.