Back to All Checks
Low CodeBuild Regional

CodeBuild S3 logs should be encrypted

NISTISO 27001

Description

Checks if Amazon S3 logs for an AWS CodeBuild project are encrypted. The control fails if encryption is deactivated for S3 logs for a CodeBuild project.

Remediation

To ensure the encryption of CodeBuild project S3 logs, enable encryption in the S3 logs configuration.

Steps

  1. Open the AWS CodeBuild console.
  2. Select the build project to modify.
  3. Navigate to the 'Logs' section in the project settings.
  4. Ensure that 'S3 logs' is enabled and 'Encryption disabled' is not checked.
  5. Save the changes to the project configuration.

Compliance

NISTISO 27001
Start Your Free Security Check