Back to All Checks
Medium EFS Regional

Elastic File System should be configured to encrypt file data at-rest using AWS KMS

NISTISO 27001

Description

Checks whether Amazon Elastic File System is configured to encrypt the file data using AWS KMS.

Remediation

To encrypt a new Amazon EFS file system, see Encrypting data at rest in the Amazon Elastic File System User Guide.

Steps

  1. Go to the Amazon EFS console.
  2. Create a new file system or modify an existing one.
  3. Enable encryption and specify the AWS KMS key.

Compliance

NISTISO 27001
Start Your Free Security Check