💼 SI-2(4) Flaw Remediation | Automated Patch Management Tools

• ID: /frameworks/nist-sp-800-53-r5/si/02/04

Description

Employ automated patch management tools to facilitate flaw remediation to the following system components: [Assignment: organization-defined system components].

Similar

• Sections
  • /frameworks/aws-fsbp-v1.0.0/dms/06
  • /frameworks/aws-fsbp-v1.0.0/ecs/10
  • /frameworks/aws-fsbp-v1.0.0/eks/02
  • /frameworks/aws-fsbp-v1.0.0/elastic-beanstalk/02
  • /frameworks/aws-fsbp-v1.0.0/elasticache/02
  • /frameworks/aws-fsbp-v1.0.0/lambda/02
  • /frameworks/aws-fsbp-v1.0.0/opensearch/10
  • /frameworks/aws-fsbp-v1.0.0/rds/13
  • /frameworks/aws-fsbp-v1.0.0/rds/35
  • /frameworks/aws-fsbp-v1.0.0/redshift/06
  • /frameworks/aws-fsbp-v1.0.0/ssm/02
• Internal
  • ID: dec-c-4d7c5723

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [DMS.6] DMS replication instances should have automatic minor version upgrade enabled		1	1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [ECS.10] ECS Fargate services should run on the latest Fargate platform version					no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [EKS.2] EKS clusters should run on a supported Kubernetes version					no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [ElasticBeanstalk.2] Elastic Beanstalk managed platform updates should be enabled					no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [ElastiCache.2] ElastiCache clusters should have automatic minor version upgrades enabled			1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [Lambda.2] Lambda functions should use supported runtimes					no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [Opensearch.10] OpenSearch domains should have the latest software update installed					no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [RDS.13] RDS automatic minor version upgrades should be enabled		1	1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [RDS.35] RDS DB clusters should have automatic minor version upgrade enabled			1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [Redshift.6] Amazon Redshift should have automatic upgrades to major versions enabled					no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [SSM.2] Amazon EC2 instances managed by Systems Manager should have a patch compliance status of COMPLIANT after a patch installation					no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (4)

Policy	Logic Count	Flags	Compliance
🛡️ AWS DMS Replication Instance Auto Minor Version Upgrade is not enabled🟢	1	🟢 x6	no data
🛡️ AWS ElastiCache Redis Cluster Auto Minor Version Upgrade is not enabled🟢	1	🟢 x6	no data
🛡️ AWS RDS Instance Auto Minor Version Upgrade is not enabled🟠🟢	1	🟠 x1, 🟢 x6	no data
🛡️ AWS RDS Multi-AZ Cluster Auto Minor Version Upgrade is not enabled🟢	1	🟢 x6	no data