Axonius Cloud Asset Compliance for AWS aggregates and correlates data from your AWS environments to show how each account adheres to benchmarks, such as the CIS Amazon Web Services Foundations Benchmark.
Ensuring that all your AWS instances and accounts are secured from misconfigurations, overly permissive access rights, and data leakage can be a massive undertaking. Axonius Cloud Asset Compliance for AWS allows you to quickly understand how each Amazon instance adheres to or deviates from cloud compliance benchmarks.
Axonius maps all AWS accounts to the rules in the CIS benchmark related to IAM, such as: avoiding use of the root account, rotating credential and access keys, confirming password strength, and more to make sure accounts and instances are configured securely.
Axonius checks every AWS to ensure that CloudTrail is enabled with log file validation, that the S3 bucket used to store logs is not accessible, and more.
Implement a log metric filter and alarm for unauthorized API calls, management console sign-in without MFA, usage of the root account, IAM policy changes, CloudTrail config changes, and more.
Ensure that no security groups allow ingress from 0.0.0.0/0 to port 22 or 3389, making sure the default security group of every VPC restricts all traffic and that routing tables for VPC peering are least access, and more.
41 Madison Avenue, 37th Floor
New York, NY 10010