Posted On: Jun 3, 2020
AWS Config now offers a new conformance pack template that is intended to help you verify your compliance with NIST CSF operational best practices.
Conformance packs enable you to package a collection of AWS Config rules and remediation actions that can then be deployed together as a single entity across an entire organization. This is particularly useful if you need to quickly establish a common baseline for resource configuration policies and best practices across multiple accounts in your organization in a scalable and efficient way. A conformance pack is a YAML template that contains a list of AWS Config managed or custom rules and remediation actions. The new conformance pack template launched today contains a set of AWS Config rules that help you to verify compliance with the NIST CSF operational best practices.
Conformance packs are charged using a tiered pricing model based on the number of conformance pack evaluations you run each month. For more information, visit the AWS Config Pricing page and full list of Regions where AWS Config conformance packs are offered. To learn more about AWS Config, visit the AWS Config webpage.
Disclaimer: Conformance packs provide a general-purpose compliance framework to help you create security, operational or cost-optimization governance checks using managed or custom AWS Config rules and Automation documents. The conformance pack sample templates provided by AWS are intended to give you a head start in creating your own conformance packs with different or additional rules, input parameters and remediation actions that suit your environment. Sample templates, including those related to compliance standards and industry benchmarks, are not designed to ensure your compliance with a specific governance standard and can neither replace your internal efforts nor guarantee that you will pass a compliance assessment.