Logging and monitoring

Log monitoring is not set up for disabling or deletion of customer created CMKs

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Log Service is a real-time data logging service that supports collection, consumption, shipping, search, and analysis of logs. It was detected that log monitoring and alarm are not set up to alert on customer-created CMKs that are disabled or deleted. Monitoring for customer-created CMKs that are being disabled or deleted will help detect and prevent data from being unencrypted.