📄️ lacework-global-34
1.4 Ensure no 'root' user account access key exists (Automated)
📄️ lacework-global-69
1.6 Enable hardware Multi-Factor Authentication (MFA) for the 'root' user account (Manual)
📄️ lacework-global-93
Relational Database Service (RDS) should not have a Public Interface
📄️ lacework-global-102
Redshift Cluster should not be Publicly Accessible (Automated)
📄️ lacework-global-123
OpenSearch Domain should be in Virtual Private Cloud (VPC) (Automated)
📄️ lacework-global-160
Ensure No Public Elastic Block Store (EBS) Snapshots
📄️ lacework-global-215
Security groups should not allow unrestricted access to ports with high risk (Automated)
📄️ lacework-global-216
Do not unintentionally delete AWS Key Management Service (KMS) keys (Automated)
📄️ lacework-global-367
Neptune DB cluster snapshots should not be public (Automated)
📄️ lacework-global-368
Lambda function policies should prohibit public access (Automated)
📄️ lacework-global-369
Database Migration Service (DMS) replication instances should not be public (Automated)
📄️ lacework-global-370
Relational Database Service (RDS) snapshot should be private (Automated)
📄️ lacework-global-378
CloudFront distributions should have a default root object configured (Automated)
📄️ lacework-global-379
CodeBuild project environment variables should not contain clear text credentials (Automated)
📄️ lacework-global-380
CodeBuild Bitbucket source repository URLs should not contain sensitive credentials (Automated)
📄️ lacework-global-381
Systems Manager (SSM) documents should not be public (Automated)
📄️ lacework-global-807
S3 general purpose buckets should block public read access (Automated)
📄️ lacework-global-808
S3 general purpose buckets should block public write access (Automated)
📄️ lacework-global-809
ElasticSearch Domain should be in Virtual Private Cloud (VPC) (Automated)