Not monitoring changes to Network Access Control Lists (NACL)

Details

This rule checks for adherence to Center for Internet Security (CIS) Recommendation 3.11, Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL) . https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf#page=117

Tags: cis