Back to All Checks
Medium DocumentDB Regional

Amazon DocumentDB clusters should have adequate backup retention

NIST 800-53PCI DSS v4.0.1PCI DSS v3.2.1HIPAA

Description

This control checks whether an Amazon DocumentDB cluster has a backup retention period greater than or equal to the specified time frame. The control fails if the backup retention period is less than the specified time frame. Unless you provide a custom parameter value for the backup retention period, Security Hub uses a default value of 7 days. Adequate backup retention ensures that you can recover your data in case of accidental deletion, corruption, or other data loss scenarios, which is essential for business continuity and disaster recovery.

Remediation

Configure your Amazon DocumentDB cluster to have an adequate backup retention period of at least 7 days.

Steps

  1. Open the Amazon DocumentDB console.
  2. Choose 'Clusters' from the navigation pane.
  3. Select the cluster you want to modify.
  4. Choose 'Modify'.
  5. In the 'Backup' section, set 'Backup retention period' to at least 7 days.
  6. Choose 'Continue' and then 'Modify cluster'.

Compliance

NIST 800-53PCI DSS v4.0.1PCI DSS v3.2.1HIPAA
Start Your Free Security Check