Which issues can you remediate?

Sophos Cloud Optix can remediate issues related to S3 buckets, security groups and IAM password policies, in AWS environments

This feature helps with administration and management. For example, it allows you to delete unused Security Groups, or to ensure that S3 buckets are properly protected according to your policy.

Sophos Cloud Optix currently supports remediation for the following rules:

IAM Password Policy

  • Ensure IAM password policy requires at least one uppercase letter.
  • Ensure IAM password policy requires at least one lowercase letter.
  • Ensure IAM password policy requires at least one symbol.
  • Ensure IAM password policy requires at least one number.
  • Ensure IAM password policy requires minimum length of 14 or greater.
  • Ensure IAM password policy prevents password reuse.
  • Ensure IAM password policy expires passwords within 90 days or less.

S3 Bucket Encryption and Public Read/Write Permission

  • Ensure encryption is turned on for S3 buckets.
  • Ensure S3 buckets do not allow public read/list permission.
  • Ensure S3 buckets do not allow public read/list bucket ACL permissions.
  • Ensure S3 buckets do not allow public write permission.
  • Ensure S3 buckets do not allow public write bucket ACL permissions.

Incident Management

  • Ensure a support role has been created to manage incidents with AWS Support.

Sophos Cloud Optix Best Practices

  • Flag resource(s) with public IP and Security Group with ingress from any source on any port.