{"id":2678,"date":"2024-02-28T23:34:59","date_gmt":"2024-02-28T23:34:59","guid":{"rendered":"https:\/\/www.maghilda.com\/staging\/9669\/?p=2678"},"modified":"2024-02-28T23:35:01","modified_gmt":"2024-02-28T23:35:01","slug":"compliance-management-with-aws-config-compliance-as-code","status":"publish","type":"post","link":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/","title":{"rendered":"Compliance Management with AWS Config (Compliance as Code)"},"content":{"rendered":"\n<p class=\"\">AWS Config provides a detailed view of the configuration of AWS resources in your AWS account and is a powerful tool for security and governance.&nbsp;<\/p>\n\n\n\n<p class=\"\">AWS Config can record and track changes to the configuration of many types of resources in AWS. Config Rules can be created to define your ideal configuration settings and then run to evaluate the configuration of your AWS resources. AWS Config provides predefined rules, called managed rules, as well as allows you to create custom rules using AWS Lambda to define custom logic that AWS Config doesn&#8217;t yet record. Currently, there are over 200 predefined managed rules in AWS Config.<\/p>\n\n\n\n<p class=\"\">If resources drift from these settings, AWS Config can notify you, for example, if your Amazon S3 bucket doesn\u2019t have versioning enabled, or if EC2 instances have a public IP association which might not always be desirable from a security or compliance standpoint.<\/p>\n\n\n\n<p class=\"\">These rule options can be incorporated into a broader compliance policy. A typical company\u2019s policy might state that:<\/p>\n\n\n\n<ul style=\"margin-right:var(--wp--preset--spacing--50);margin-left:var(--wp--preset--spacing--50)\" class=\"wp-block-list\">\n<li class=\"\">All data must be encrypted at rest.<\/li>\n\n\n\n<li class=\"\">The AWS IAM password policy must meet the corporate standard.<\/li>\n\n\n\n<li class=\"\">Resources must be billed to the correct cost center.<\/li>\n\n\n\n<li class=\"\">Want to know who owns a resource in case there is an issue or question about the resource.<\/li>\n\n\n\n<li class=\"\">Want to identify whether a resource is a part of Dev, QA, Production, or staging so that we can apply the correct SLAs and make sure the appropriate teams have access.<\/li>\n<\/ul>\n\n\n\n<p class=\"\">AWS Config is not free and the number of configuration items recorded (configs are stored in S3), and each active rule incur charges. The pricing is detailed <a href=\"https:\/\/aws.amazon.com\/config\/pricing\/\">here<\/a> and is not too expensive if properly managed. Keep in mind that pricing could add up quickly if there are a lot of monitored resources that change frequently in your AWS environment.<\/p>\n\n\n\n<p class=\"\">Following are the steps to enable AWS Config and create a managed rule to check if logging is enabled for your S3 buckets.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 1: Enable AWS Config.<\/h3>\n\n\n\n<p class=\"\">Click Get Started button for manual setup <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img fetchpriority=\"high\" decoding=\"async\" width=\"1024\" height=\"346\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png\" alt=\"\" class=\"wp-image-2682\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-300x101.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-768x260.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM.png 1086w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Step 2: Configure Settings<\/h3>\n\n\n\n<p class=\"\">Make the following selections:<br><strong>Recording Strategy<\/strong>: Specific resource types<br><strong>Resource type<\/strong>: AWS S3 Bucket<br><strong>Frequency<\/strong>: Continuous<br><strong>Data Governance<\/strong>: Use an existing AWS Config service-linked role. I have the following role under IAM: AWSServiceRoleForConfig<br><strong>Delivery Method:<\/strong> Create a bucket (It will auto-populate the name)<br><strong>Click Next<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" width=\"1024\" height=\"778\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.01-PM-1024x778.png\" alt=\"\" class=\"wp-image-2683\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.01-PM-1024x778.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.01-PM-300x228.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.01-PM-768x584.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.01-PM.png 1045w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"1020\" height=\"430\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.09-PM.png\" alt=\"\" class=\"wp-image-2684\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.09-PM.png 1020w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.09-PM-300x126.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.09-PM-768x324.png 768w\" sizes=\"(max-width: 1020px) 100vw, 1020px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Step 3: Define a rule<\/h3>\n\n\n\n<p class=\"\">Select <strong>AWS Managed Rules:<\/strong> s3-bucket-logging-enabled <br>Click <strong>Next<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"390\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.50-PM-1024x390.png\" alt=\"\" class=\"wp-image-2685\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.50-PM-1024x390.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.50-PM-300x114.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.50-PM-768x293.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.05.50-PM.png 1031w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Step 4: Review the resource type and rule<\/h3>\n\n\n\n<p class=\"\">Review and click <strong>Confirm<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"726\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.06.01-PM-1024x726.png\" alt=\"\" class=\"wp-image-2686\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.06.01-PM-1024x726.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.06.01-PM-300x213.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.06.01-PM-768x545.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.06.01-PM.png 1052w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"\">The above steps will set up your recorder and create a rule. You can also verify the recorder via the CLI as follows:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code><strong>aws configservice describe-configuration-recorders<\/strong>\n\n{\n    \"ConfigurationRecorders\": &#91;\n        {\n            \"name\": \"default\",\n            \"roleARN\": \"arn:aws:iam::791114689129:role\/aws-service-role\/config.amazonaws.com\/AWSServiceRoleForConfig\",\n            \"recordingGroup\": {\n                \"allSupported\": false,\n                \"includeGlobalResourceTypes\": false,\n                \"resourceTypes\": &#91;\n                    \"AWS::S3::Bucket\"\n                ],\n                \"exclusionByResourceTypes\": {\n                    \"resourceTypes\": &#91;]\n                },\n                \"recordingStrategy\": {\n                    \"useOnly\": \"INCLUSION_BY_RESOURCE_TYPES\"\n                }\n            },\n            \"recordingMode\": {\n                \"recordingFrequency\": \"CONTINUOUS\",\n                \"recordingModeOverrides\": &#91;]\n            }\n        }\n    ]\n}<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Step 5: Review S3 buckets<\/h3>\n\n\n\n<p class=\"\">I already had a m-lambdafunctions S3 bucket to store Lambda functions. You will notice a new S3 bucket was created to store configurations.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"339\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.02-PM-1024x339.png\" alt=\"\" class=\"wp-image-2687\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.02-PM-1024x339.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.02-PM-300x99.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.02-PM-768x255.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.02-PM.png 1116w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"\"> Both buckets had server side logging disabled<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"195\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.29-PM-1024x195.png\" alt=\"\" class=\"wp-image-2688\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.29-PM-1024x195.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.29-PM-300x57.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.29-PM-768x147.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.29-PM.png 1100w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Step 6: Validate the rule<\/h3>\n\n\n\n<p class=\"\">Click the Rules tab on the left console. Since we specified <strong>Frequency as Continuous<\/strong> during the setup above, the rule will fire immediately and provide compliance results <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"369\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.49-PM-1024x369.png\" alt=\"\" class=\"wp-image-2689\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.49-PM-1024x369.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.49-PM-300x108.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.49-PM-768x277.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.07.49-PM.png 1140w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p class=\"\">The two S3 buckets do not have server side logging enabled.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"249\" src=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.08.00-PM-1024x249.png\" alt=\"\" class=\"wp-image-2690\" srcset=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.08.00-PM-1024x249.png 1024w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.08.00-PM-300x73.png 300w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.08.00-PM-768x187.png 768w, https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.08.00-PM.png 1118w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\">Step 7: Clean up resources<\/h3>\n\n\n\n<p class=\"\">Clean up resources to avoid any unnecessary charges. I deleted the recorder via the AWS CLI as follows<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>aws configservice delete-configuration-recorder --configuration-recorder-name default<\/code><\/pre>\n\n\n\n<p class=\"\">Please delete the Config S3 bucket manually.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">References: <\/h3>\n\n\n\n<ul style=\"margin-right:var(--wp--preset--spacing--50);margin-left:var(--wp--preset--spacing--50)\" class=\"wp-block-list\">\n<li class=\"\"><a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/s3-bucket-server-side-encryption-enabled.html\">https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/s3-bucket-server-side-encryption-enabled.html<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/dynamodb-table-encryption-enabled.html\">https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/dynamodb-table-encryption-enabled.html<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config_use-managed-rules.html\">https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config_use-managed-rules.html<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/aws.amazon.com\/config\/pricing\/\">https:\/\/aws.amazon.com\/config\/pricing\/<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/github.com\/awslabs\/aws-config-engine-for-compliance-as-code\">https:\/\/github.com\/awslabs\/aws-config-engine-for-compliance-as-code<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config_develop-rules_nodejs.html\">https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config_develop-rules_nodejs.html<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config_develop-rules_getting-started.html#gs-create-lambda-function-for-custom-config-rule\">https:\/\/docs.aws.amazon.com\/config\/latest\/developerguide\/evaluate-config_develop-rules_getting-started.html#gs-create-lambda-function-for-custom-config-rule<\/a><\/li>\n\n\n\n<li class=\"\"><a href=\"https:\/\/aws.amazon.com\/blogs\/mt\/deploying-custom-aws-config-rules-in-an-aws-organization-environment\/\">https:\/\/aws.amazon.com\/blogs\/mt\/deploying-custom-aws-config-rules-in-an-aws-organization-environment\/<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>AWS Config provides a detailed view of the configuration of AWS resources in your AWS account and is a powerful tool for security and governance.&nbsp; AWS Config can record and track changes to the configuration of many types of resources in AWS. Config Rules can be created to define your ideal configuration settings and then [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[72],"tags":[71],"class_list":["post-2678","post","type-post","status-publish","format-standard","hentry","category-aws-config","tag-aws-config"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Compliance Management with AWS Config (Compliance as Code) - maghilda<\/title>\n<meta name=\"description\" content=\"Compliance Management with AWS Config (Compliance as Code)\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Compliance Management with AWS Config (Compliance as Code) - maghilda\" \/>\n<meta property=\"og:description\" content=\"Compliance Management with AWS Config (Compliance as Code)\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/\" \/>\n<meta property=\"og:site_name\" content=\"maghilda\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-28T23:34:59+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-02-28T23:35:01+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png\" \/>\n<meta name=\"author\" content=\"vibs\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"vibs\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/\"},\"author\":{\"name\":\"vibs\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#\\\/schema\\\/person\\\/21009c5e4f1817ea18c81d5004bcec1e\"},\"headline\":\"Compliance Management with AWS Config (Compliance as Code)\",\"datePublished\":\"2024-02-28T23:34:59+00:00\",\"dateModified\":\"2024-02-28T23:35:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/\"},\"wordCount\":621,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png\",\"keywords\":[\"AWS Config\"],\"articleSection\":[\"AWS Config\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/\",\"url\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/\",\"name\":\"Compliance Management with AWS Config (Compliance as Code) - maghilda\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png\",\"datePublished\":\"2024-02-28T23:34:59+00:00\",\"dateModified\":\"2024-02-28T23:35:01+00:00\",\"description\":\"Compliance Management with AWS Config (Compliance as Code)\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/Screen-Shot-2024-02-28-at-6.04.14-PM.png\",\"contentUrl\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/Screen-Shot-2024-02-28-at-6.04.14-PM.png\",\"width\":1086,\"height\":367},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/compliance-management-with-aws-config-compliance-as-code\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Compliance Management with AWS Config (Compliance as Code)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#website\",\"url\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/\",\"name\":\"maghilda.com\",\"description\":\"Technology blog focused on cloud computing, emerging technologies, software development and security.\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#organization\",\"name\":\"maghilda.com\",\"url\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/cropped-logo_red.png\",\"contentUrl\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/cropped-logo_red.png\",\"width\":512,\"height\":512,\"caption\":\"maghilda.com\"},\"image\":{\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/#\\\/schema\\\/person\\\/21009c5e4f1817ea18c81d5004bcec1e\",\"name\":\"vibs\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/28233c799bf0736fecb2854057b69e52d9bd97b467b55be3406890936003faee?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/28233c799bf0736fecb2854057b69e52d9bd97b467b55be3406890936003faee?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/28233c799bf0736fecb2854057b69e52d9bd97b467b55be3406890936003faee?s=96&d=mm&r=g\",\"caption\":\"vibs\"},\"sameAs\":[\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\"],\"url\":\"https:\\\/\\\/www.maghilda.com\\\/staging\\\/9669\\\/author\\\/obliczte\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Compliance Management with AWS Config (Compliance as Code) - maghilda","description":"Compliance Management with AWS Config (Compliance as Code)","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/","og_locale":"en_US","og_type":"article","og_title":"Compliance Management with AWS Config (Compliance as Code) - maghilda","og_description":"Compliance Management with AWS Config (Compliance as Code)","og_url":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/","og_site_name":"maghilda","article_published_time":"2024-02-28T23:34:59+00:00","article_modified_time":"2024-02-28T23:35:01+00:00","og_image":[{"url":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png","type":"","width":"","height":""}],"author":"vibs","twitter_card":"summary_large_image","twitter_misc":{"Written by":"vibs","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#article","isPartOf":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/"},"author":{"name":"vibs","@id":"https:\/\/www.maghilda.com\/staging\/9669\/#\/schema\/person\/21009c5e4f1817ea18c81d5004bcec1e"},"headline":"Compliance Management with AWS Config (Compliance as Code)","datePublished":"2024-02-28T23:34:59+00:00","dateModified":"2024-02-28T23:35:01+00:00","mainEntityOfPage":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/"},"wordCount":621,"commentCount":0,"publisher":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/#organization"},"image":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#primaryimage"},"thumbnailUrl":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png","keywords":["AWS Config"],"articleSection":["AWS Config"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/","url":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/","name":"Compliance Management with AWS Config (Compliance as Code) - maghilda","isPartOf":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#primaryimage"},"image":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#primaryimage"},"thumbnailUrl":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM-1024x346.png","datePublished":"2024-02-28T23:34:59+00:00","dateModified":"2024-02-28T23:35:01+00:00","description":"Compliance Management with AWS Config (Compliance as Code)","breadcrumb":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#primaryimage","url":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM.png","contentUrl":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2024\/02\/Screen-Shot-2024-02-28-at-6.04.14-PM.png","width":1086,"height":367},{"@type":"BreadcrumbList","@id":"https:\/\/www.maghilda.com\/staging\/9669\/compliance-management-with-aws-config-compliance-as-code\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.maghilda.com\/staging\/9669\/"},{"@type":"ListItem","position":2,"name":"Compliance Management with AWS Config (Compliance as Code)"}]},{"@type":"WebSite","@id":"https:\/\/www.maghilda.com\/staging\/9669\/#website","url":"https:\/\/www.maghilda.com\/staging\/9669\/","name":"maghilda.com","description":"Technology blog focused on cloud computing, emerging technologies, software development and security.","publisher":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.maghilda.com\/staging\/9669\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.maghilda.com\/staging\/9669\/#organization","name":"maghilda.com","url":"https:\/\/www.maghilda.com\/staging\/9669\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.maghilda.com\/staging\/9669\/#\/schema\/logo\/image\/","url":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2023\/12\/cropped-logo_red.png","contentUrl":"https:\/\/www.maghilda.com\/staging\/9669\/wp-content\/uploads\/2023\/12\/cropped-logo_red.png","width":512,"height":512,"caption":"maghilda.com"},"image":{"@id":"https:\/\/www.maghilda.com\/staging\/9669\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.maghilda.com\/staging\/9669\/#\/schema\/person\/21009c5e4f1817ea18c81d5004bcec1e","name":"vibs","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/28233c799bf0736fecb2854057b69e52d9bd97b467b55be3406890936003faee?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/28233c799bf0736fecb2854057b69e52d9bd97b467b55be3406890936003faee?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/28233c799bf0736fecb2854057b69e52d9bd97b467b55be3406890936003faee?s=96&d=mm&r=g","caption":"vibs"},"sameAs":["https:\/\/www.maghilda.com\/staging\/9669"],"url":"https:\/\/www.maghilda.com\/staging\/9669\/author\/obliczte\/"}]}},"_links":{"self":[{"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/posts\/2678","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/comments?post=2678"}],"version-history":[{"count":5,"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/posts\/2678\/revisions"}],"predecessor-version":[{"id":2693,"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/posts\/2678\/revisions\/2693"}],"wp:attachment":[{"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/media?parent=2678"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/categories?post=2678"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.maghilda.com\/staging\/9669\/wp-json\/wp\/v2\/tags?post=2678"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}