| Benchmark | Rule ID | Title | Service Type | Resource Type |
|---|---|---|---|---|
| SOC_2_Global | CSPM-AWS-2024-0067 | No Authorized User Is Allowed to Handle Issues with Amazon Support | IAM | Policies |
| SOC_2_Global | CSPM-AWS-2024-0067 | No Authorized User Is Allowed to Handle Issues with Amazon Support | IAM | Policies |
| SOC_2_Global | CSPM-AWS-2024-0068 | Passwords Expiration Threshold Is Not Configured Or Exceeds The Specified Limit | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0068 | Passwords Expiration Threshold Is Not Configured Or Exceeds The Specified Limit | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0069 | The Minimum Password Length for IAM is Short. | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0069 | The Minimum Password Length for IAM is Short. | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0071 | Password Policy Does Not Mandate Lowercase Characters | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0071 | Password Policy Does Not Mandate Lowercase Characters | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0072 | Password Policy Does Not Mandate a Number | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0072 | Password Policy Does Not Mandate a Number | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0073 | Password Policy Does Not Mandate a Symbol | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0073 | Password Policy Does Not Mandate a Symbol | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0074 | Password Policy Does Not Mandate Uppercase Characters | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0074 | Password Policy Does Not Mandate Uppercase Characters | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0075 | Password Policy Allows Reuse of Passwords | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0075 | Password Policy Allows Reuse of Passwords | IAM | AccountPasswordPolicy |
| SOC_2_Global | CSPM-AWS-2024-0077 | No Hardware MFA for Root Account | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0077 | No Hardware MFA for Root Account | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0078 | No MFA for Root Account | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0078 | No MFA for Root Account | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0079 | Root Account Used Recently | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0079 | Root Account Used Recently | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0080 | Root Account Has Active X.509 Certs | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0080 | Root Account Has Active X.509 Certs | IAM | CredentialReport |
| SOC_2_Global | CSPM-AWS-2024-0085 | IAM User is Not in Category Group | IAM | Groups |
| SOC_2_Global | CSPM-AWS-2024-0085 | IAM User is Not in Category Group | IAM | Groups |
| SOC_2_Global | CSPM-AWS-2024-0088 | User Holding Multiple API Keys | IAM | AccessKey |
| SOC_2_Global | CSPM-AWS-2024-0088 | User Holding Multiple API Keys | IAM | AccessKey |
| SOC_2_Global | CSPM-AWS-2024-0089 | User with Enabled Keys and Password | IAM | AccessKey |
| SOC_2_Global | CSPM-AWS-2024-0089 | User with Enabled Keys and Password | IAM | AccessKey |
| SOC_2_Global | CSPM-AWS-2024-0091 | User without MFA | IAM | Users |
| SOC_2_Global | CSPM-AWS-2024-0091 | User without MFA | IAM | Users |
| SOC_2_Global | CSPM-AWS-2024-0155 | Ensure that IAM Access analyzer is enabled for all regions | AccessAnalyzer | Analyzer |
| SOC_2_Global | CSPM-AWS-2024-0155 | Ensure that IAM Access analyzer is enabled for all regions | AccessAnalyzer | Analyzer |
| SOC_2_Global | CSPM-AWS-2024-0169 | Verify that there are no active access keys associated with the root user account | IAM | AccountSummary |
| SOC_2_Global | CSPM-AWS-2024-0169 | Verify that there are no active access keys associated with the root user account | IAM | AccountSummary |
| SOC_2_Global | CSPM-AWS-2024-0171 | Security contact information should be provided for an AWS account. | Account | ContactInformation |
| SOC_2_Global | CSPM-AWS-2024-0171 | Security contact information should be provided for an AWS account. | Account | ContactInformation |
| SOC_2_Global | CSPM-AWS-2024-0172 | AWS account should be part of an AWS Organizations organization | Account | Organizations |
| SOC_2_Global | CSPM-AWS-2024-0291 | IAM customer managed policies should not allow decryption actions on all KMS keys | KMS | Policy |
| SOC_2_Global | CSPM-AWS-2024-0291 | IAM customer managed policies should not allow decryption actions on all KMS keys | KMS | Policy |
| SOC_2_Global | CSPM-AWS-2024-0501 | Ensure Existence of IAM Users | IAM | User |
| SOC_2_Global | CSPM-AWS-2024-0505 | Detect Unused IAM Users | IAM | Users |
| SOC_2_Global | CSPM-AWS-2024-0517 | Ensure CloudFront is Enabled | CloudFront | Distributions |
| SOC_2_Global | CSPM-AWS-2024-0548 | Ensure AWS Organizations All Features is Enabled | Organization | Organization |
