No monitoring for VPC network changes

Logging and monitoring

No monitoring for VPC network changes

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
Data Security Posture Management (DSPM) Best Practices
GCP CIS
GDPR
hdh
HITRUST
ISO/IEC 27001
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53

Description

It is recommended that a metric filter and alarm be established for Virtual Private Cloud (VPC) network changes. Monitoring changes to a VPC will help ensure VPC traffic flow is not getting impacted.

Recommended Mitigation

In the User-defined Metrics section, ensure that at least one metric is present with filter text: resource.type=gce_network AND jsonPayload.event_subtype=""compute.networks.insert"" OR jsonPayload.event_subtype=""compute.networks.patch"" OR jsonPayload.event_subtype=""compute.networks.delete"" OR jsonPayload.event_subtype=""compute.networks.removePeering"" OR jsonPayload.event_subtype=""compute.networks.addPeering""

No monitoring for VPC network changes

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS