--

--

How to Secure CloudTrail S3 Bucket

Risk

There is a huge risk associated with using a public bucket for AWS CloudTrail logs as there is a high chance of having sensitive information included in those logs.

Framework

CIS

Remediation

1) Go to the AWS Management Console

2) Search for CloudTrail in the search bar at the top left

3) Click on the trail identified by Crowd Sentry

4) Click on the Trail log location to go to the bucket details

5) Click on the bucket in the breadcrumbs

--

--

How to set AWS Password Policy

Risk

Password and key security in the cloud is paramount as the primary attack surface for all cloud environments is access and authorization. It is extremely important that you have strong passwords and MFA setup on every user that has console access.

Framework

CIS

Remediation

1) Go to the AWS Management Console

2) Search for IAM in the search bar at the top left

3) Go to Account Settings in the left hand column

--

--

How to Set the AWS Security Contact

Risk

The security contact for an AWS account needs to be set incase of a security event being detected by AWS. They will contact the Account Security Contact to inform them of the potential security issue.

Framework

CIS

Remediation

1) Go to the AWS Management Console

2) Open up the Account options on the top right of the page

3) In the Alternate Contacts section click the Edit button

--

--