Describe the Issue
Based on AWS SIP report, security team will comb through, verify, and prioritize the findings, and mitigate. Additional Context
Security is not a Product but a continuous process to improve the security posture
Security is a Team Sport
Security Standard Enabled in HUB Dashboard including
AWS Foundational Security Best Practice v1.0.0
CIS AWS Foundations Benchmark v1.2.0
PCI DSS v3.2.1
CSPM
Scoped for ASEA Core Account
Acceptance Criteria
[ ] Action Plan - How Often, When, Who doing What - verify & accept, mitigate,
[ ] Tuning such as adding exclusion
[ ] Improve Score in Security HUB
A set of pre-defined requirement that need to be met in order to mark the user story as “done”. See below for team agreement details.
Describe the Issue Based on AWS SIP report, security team will comb through, verify, and prioritize the findings, and mitigate.
Additional Context
Acceptance Criteria