GCP Secret Manager secret encrypted without Customer-Managed Encryption Keys - Complete Cloud Security in Minutes - Orca Security

Data protection

GCP Secret Manager secret encrypted without Customer-Managed Encryption Keys

Risk Level

Informational (4)

Platform(s)

Description

GCP Secret Manager can store, manage and access secrets, with the appropriate permissions you can view its content. We detected that the secret '{GcpSecretManagerSecret}' is not using CMEKs (Customer-Managed Encryption Keys). CMEKs allow you to have full control over the data encryption and decryption process.

Recommended Mitigation

It is recommended to configure secrets to be encrypted with Customer-Managed Encryption Keys (CMEKs). For more information see: https://cloud.google.com/secret-manager/docs/cmek

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.