TF 0036 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Ensure a log metric filter and alarm exist for organisation changes
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Service | cloudwatch |
| Provider | AWS |
Description
Monitoring AWS Organizations changes can help you prevent any unwanted, accidental or intentional modifications that may lead to unauthorized access or other security breaches. This monitoring technique helps you to ensure that any unexpected changes performed within your AWS Organizations can be investigated and any unwanted changes can be rolled back.
Resolution
Create an alarm to alert on organisation changes