Back to All Checks
Medium Backup Regional

AWS Backup recovery points should be encrypted at rest

NISTISO 27001HIPAA

Description

This check verifies that AWS Backup recovery points are encrypted at rest. This check checks for last recovery point encryption status of backup enabled resources.

Remediation

To ensure that AWS Backup recovery points are encrypted at rest, you must configure the backup encryption settings for the resource.

Steps

  1. Go to the AWS Backup console and go to Protected resources.
  2. Select the resource.
  3. Review the last recovery point encryption status.
  4. If the resource type does not support full AWS Backup management, you must configure its backup encryption by following that service's instructions, such as Amazon EBS encryption in the Amazon EBS User Guide.

Compliance

NISTISO 27001HIPAA
Start Your Free Security Check