| ๐ผ 2.1 Simple Storage Service (S3) | 4 | | | |
| ย ย ย ย ๐ผ 2.1.1 Ensure S3 Bucket Policy is set to deny HTTP requests (Automated) | | | 1 | |
| ย ย ย ย ๐ผ 2.1.2 Ensure MFA Delete is enabled on S3 buckets (Manual) | | | 1 | |
| ย ย ย ย ๐ผ 2.1.3 Ensure all data in Amazon S3 has been discovered, classified, and secured when necessary (Manual) | | | 1 | |
| ย ย ย ย ๐ผ 2.1.4 Ensure that S3 is configured with 'Block Public Access' enabled (Automated) | | | 1 | |
| ๐ผ 2.2 Relational Database Service (RDS) | 4 | | | |
| ย ย ย ย ๐ผ 2.2.1 Ensure that encryption-at-rest is enabled for RDS instances (Automated) | | | 1 | |
| ย ย ย ย ๐ผ 2.2.2 Ensure the Auto Minor Version Upgrade feature is enabled for RDS instances (Automated) | | | 1 | |
| ย ย ย ย ๐ผ 2.2.3 Ensure that RDS instances are not publicly accessible (Automated) | | | 1 | |
| ย ย ย ย ๐ผ 2.2.4 Ensure Multi-AZ deployments are used for enhanced availability in Amazon RDS (Manual) | | | 1 | |
| ๐ผ 2.3 Elastic File System (EFS) | 1 | | | |
| ย ย ย ย ๐ผ 2.3.1 Ensure that encryption is enabled for EFS file systems (Automated) | | | 1 | |