CloudWiki
Compliance

FedRAMP

resize
Visit website

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that promotes the adoption of secure cloud services across the federal government by providing a standardized approach to security and risk assessment for cloud technologies and federal agencies. FedRAMP standardizes security requirements for the authorization and ongoing cybersecurity of cloud services in accordance with FISMA , OMB Circular A-130 , and FedRAMP policy.

Compliance checks for Amazon Web Services

High
Ensure Database Migration Service (DMS) are not publicly accessible
APRA
GDPR
HIPAA
NIST4
PCI-DSS
Critical
Ensure DMS instances are not accessible via Internet (Network and API)
CIS
SOC2
PCI-DSS
FedRAMP
AWS Well-Architected Framework
Medium
Ensure CloudTrail Log File Integrity Validation is enabled
CISAWSF
PCI-DSS
HIPAA
GDPR
APRA
Medium
Ensure CloudWatch Logs service is configured to monitor CloudTrail trail logs
CISAWSF
PCI-DSS
GDPR
APRA
MAS
Medium
Ensure S3 buckets associated with CloudTrail trails are configured with sever access logging
APRA
CISAWSF
SOC2
PCI-DSS
GDPR
High
Ensure CloudTrail trails have multi-region enabled
APRA
MAS
CISAWSF
PCI-DSS
HIPAA
Medium
Ensure IAM Role has no inline policy
APRA
AWS Well-Architected Framework
MAS
NIST4
FedRAMP
Medium
Ensure that S3 Buckets are configured with "Block public access"
GDPR
ISO 27001
PCI-DSS
SOC2
HITRUST
Medium
Ensure IAM Group has no inline policy
APRA
MAS
NIST4
FedRAMP
Medium
Ensure IAM User has no inline policy
APRA
AWS Well-Architected Framework
CISAWSF
SOC2
MAS
Critical
Ensure all IAM users with console access have MFA enabled
CIS
SOC2
GDPR
ISO 27001
FTR
All Compliances
APRA
AWS Foundational Security Best Practices Controls
AWS Well-Architected Framework
CCPA
CIS
CIS 8
CIS EKS
CISAWSF
CSA CCM
FTR
FedRAMP
GDPR
HIPAA
HITRUST
ISO 27001
ISO 27701
MAS
NIST 800-53
NIST4
PCI-DSS
SOC2