AWS Foundational Security Best Practices - AWS Audit Manager

AWS Foundational Security Best Practices

To assist you with your audit preparation, AWS Audit Manager provides a prebuilt framework that supports the AWS Foundational Security Best Practices standard.

What is the AWS Foundational Security Best Practices standard?

The AWS Foundational Security Best Practices standard is a set of controls that detect when your deployed accounts and resources deviate from security best practices.

You can use this standard to continuously evaluate all of your AWS accounts and workloads and quickly identify areas of deviation from best practices. The standard provides actionable and prescriptive guidance on how to improve and maintain your organization’s security posture.

The controls include best practices from across multiple AWS services. Each control is assigned a category that reflects the security function that it applies to. For more information, see Control categories in the AWS Security Hub User Guide.

Use AWS Audit Manager to support your AWS Foundational Security Best Practices audit preparation

You can use the AWS Foundational Security Best Practices framework in AWS Audit Manager to prepare for audits associated with this framework. All of its 93 controls are automated. The controls in this framework aren't intended to verify whether your systems are compliant with AWS Foundational Security Best Practices requirements, and they can't guarantee that you will pass an AWS Foundational Security Best Practices assessment.

You can find the AWS Foundational Security Best Practices framework under the Standard frameworks tab of the Framework library in Audit Manager.

For instructions on how to create an assessment using this framework, see Creating an assessment. For instructions on how to customize this framework to support your specific requirements, see Customizing an existing framework and Customizing an existing control.