Not monitoring API calls for changes to S3 bucket policies

Details

This rule checks for adherence to Center for Internet Security (CIS) Recommendation 3.8, Ensure a log metric filter and alarm exist for S3 bucket policy changes. https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf#page=108

Tags: cis