AWS VPC Flow Logs and DNS Resolver Logging for StateRAMP (NIST 800 - 53)

old.reddit.com / @/u/lancejack2, https://old.reddit.com/user/lancejack2

Hey folks,

I was wondering if anyone had any experience with stateRAMP (based on NIST 800 - 53) requirements in regards to AWS. There is great debate within the company whether we will need to turn on VPC flow logs and Route53 DNS resolver logging globally, with cost implications being the primary concern.

While I personally believe these should be turned on anyway for best practice, there is management pushback due to cost and we're being asked if this is truly necessary for StateRAMP compliance.

Any insight/clarification would be highly appreciated!

submitted by /u/lancejack2
[link] [comments]

published 3 months ago


Previous

NIST 800-53 in Europe
published 3 months ago

Next

NIST 800 171 r2 - SSP
published 2 months ago
See all items from the same source