Back to All Checks
High GuardDuty Regional

GuardDuty S3 Protection should be enabled

PCI DSS v4.0.1PCI DSS v11.5.1

Description

This control checks whether GuardDuty S3 Protection is enabled. For a standalone account, the control fails if GuardDuty S3 Protection is disabled in the account. In a multi-account environment, the control fails if the delegated GuardDuty administrator account and all member accounts do not have S3 Protection enabled. S3 Protection enables GuardDuty to monitor object-level API operations and identify potential security risks for data within Amazon Simple Storage Service (Amazon S3) buckets. GuardDuty monitors threats against your S3 buckets.

Remediation

To enable GuardDuty S3 Protection, you need to configure the S3 Protection settings in GuardDuty.

Steps

  1. Navigate to the Amazon GuardDuty console
  2. Go to 'Settings' in the left navigation
  3. Select 'S3 Protection'
  4. Enable 'S3 Protection'
  5. Configure the protection settings as needed
  6. Save the configuration
  7. Verify that S3 Protection is active

Compliance

PCI DSS v4.0.1PCI DSS v11.5.1
Start Your Free Security Check