Back to All Checks
Medium Redshift Regional

Redshift Serverless namespaces should be encrypted with customer managed AWS KMS keys

NIST 800-53

Description

Checks if Amazon Redshift Serverless namespaces are configured to use customer managed AWS KMS keys for encryption. The control fails if the namespace is not configured with a customer managed KMS key.

Remediation

To enable customer managed KMS key encryption for Redshift Serverless namespaces, follow these steps:

Steps

  1. Sign in to the AWS Management Console and open the Amazon Redshift console.
  2. In the navigation pane, choose 'Serverless dashboard'.
  3. Select the identified namespace that requires KMS key encryption.
  4. Choose 'Edit'.
  5. In the 'Security' section, select a customer managed KMS key from the 'Encryption key' dropdown.
  6. Choose 'Save changes'.
  7. For detailed guidance, refer to the AWS documentation: 'Encryption for Amazon Redshift Serverless' in the Amazon Redshift User Guide.

Compliance

NIST 800-53
Start Your Free Security Check