The AWS Management Console, along with the AWS CLI can produce powerful results for auditors across multiple regulatory, standards, and industry authorities. I am going to cover some of the key sources that produce important and meaningful log information that you can use within your audit and compliance program.

You should consider auditing your security configuration in the following situations:

• On a periodic basis. You should perform the steps described in this document at regular intervals as a best practice for security.
• If there are changes in your organization, such as people leaving.
• If you have stopped using one or more individual AWS services. This is important for removing permissions that users in your account no longer need.
• If you’ve added or removed software in your accounts, such as applications on Amazon EC2 instances, AWS OpsWorks stacks, AWS CloudFormation templates, etc.
• If you ever suspect that an unauthorized person might have accessed your account.

#aws #cloud-computing #audit