1. Write Custom AWS config rules
2. Setup CI/CD to deploy the developed config rules
3. Enable security hub with Master- slave account
Custom AWS config Rules to be created:
1. Buckets allowing access via http
2. Buckets do not have default encryption enabled
3. Buckets not enforcing server side encryption with a bucket policy
4. Buckets not utilizing KMS keys for encryption
5. Bucket not utilizing Network encryption
All of the above custom rules need to be created and deployed with CI/CD from Master account to child account
Expected Output:
(removed by Toogit admin)
Tooling Set:
Terraform for provisioning
Ansible for Config
Concourse-CI for CI/CD
AWS Config Multi-account with Central complaince and remote accounts
AWS Lambda
Deploying AWS config rules from central account to remote accounts
Setup Security Hub
About the recuiterMember since Nov 11, 2022 Arihant Enterprise
from Jambi, Indonesia