Enhancements and feature activation
Number of enhancements which include:
- AWS Security Hub adds support for cross-Region aggregation of findings to simplify how you evaluate and improve your AWS security posture
- Update the code of the LZ to enable CloudTrail error rate Insights
- Explicit tagging of all the AWS resources created by the AWS CLI
- CIS1.11 can be disabled - this control is not compliant with the password policy set by the LZ
- VA 3.3 enable encryption on config-logs and access-logs S3 buckets
- VA 3.2 : Enable encryption on the SNS topic
- Enable Guardduty for Kubernetes
- Region ap-northeast-1 added for installation of SLZ resources.