No monitoring for VPC network route changes

Logging and monitoring

No monitoring for VPC network route changes

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
GCP CIS
GDPR
HITRUST
ISO 27701
ISO/IEC 27001
Mitre ATT&CK v12
New Zealand Information Security Manual
NIST 800-171
NIST 800-53

Description

It is recommended that a metric filter and alarm be established for Virtual Private Cloud (VPC) network route changes. Monitoring changes to route tables will help ensure that all VPC traffic flows through an expected path.

Recommended Mitigation

In the User-defined Metrics section, ensure that at least one metric is present with filter text: resource.type=""gce_route"" AND jsonPayload.event_subtype=""compute.routes.delete"" OR jsonPayload.event_subtype=""compute.routes.insert""

No monitoring for VPC network route changes

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS