CloudWiki
Compliance

CIS EKS

resize
Visit website

The CIS for Amazon Elastic Kubernetes Service (EKS) benchmark helps to assess the security configuration of Amazon EKS clusters, and makes sure nodes and applications are configured securely to meet security and compliance requirements. It was created from the CIS Kubernetes benchmark and with the input of the community around specific configuration considerations for EKS clusters, as the CIS Kubernetes benchmark does not sufficiently cover the different configuration mechanisms used by Amazon EKS and may result in false positive errors.

Compliance checks for Amazon Web Services

Low
Ensure EKS Private access is enabled
APRA
CIS
CISAWSF
CIS EKS
GDPR
Medium
Ensure Kubernetes API servers are not publicly accessible
CIS EKS
HITRUST
GDPR
ISO 27701
Medium
Ensure AWS EKS cluster has secrets encryption enabled
CIS
CISAWSF
CIS EKS
HITRUST
NIST 800-53
Medium
Ensure EKS Public access is disabled
APRA
CIS
CISAWSF
CIS EKS
GDPR
All Compliances
APRA
AWS Foundational Security Best Practices Controls
AWS Well-Architected Framework
CCPA
CIS
CIS 8
CIS EKS
CISAWSF
CSA CCM
FTR
FedRAMP
GDPR
HIPAA
HITRUST
ISO 27001
ISO 27701
MAS
NIST 800-53
NIST4
PCI-DSS
SOC2