💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.

• ID: /frameworks/pci-dss-v4.0.1/11/05/01

Description

As follows:

• All traffic is monitored at the perimeter of the CDE.
• All traffic is monitored at critical points in the CDE.
• Personnel are alerted to suspected compromises.
• All intrusion-detection and prevention engines, baselines, and signatures are kept up to date.

Similar

• Sections
  • /frameworks/pci-dss-v4.0/11/05/01
  • /frameworks/aws-fsbp-v1.0.0/guardduty/06
  • /frameworks/aws-fsbp-v1.0.0/guardduty/07
  • /frameworks/aws-fsbp-v1.0.0/guardduty/09
  • /frameworks/aws-fsbp-v1.0.0/guardduty/10

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.6] GuardDuty Lambda Protection should be enabled			1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.7] GuardDuty EKS Runtime Monitoring should be enabled			1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.9] GuardDuty RDS Protection should be enabled			1		no data
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.10] GuardDuty S3 Protection should be enabled			1		no data
💼 PCI DSS v4.0 → 💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.	1	8	13		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.	1	8	13		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 11.5.1.1 Intrusion-detection and/or intrusion-prevention techniques detect, alert on/prevent, and address covert malware communication channels.			13		no data

Policies (13)

Policy	Logic Count	Flags	Compliance
🛡️ AWS GuardDuty Detector Lambda Protection is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector RDS Protection is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector Runtime Monitoring is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector S3 Protection is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty is not enabled in all regions🟢	1	🟢 x6	no data
🛡️ AWS VPC Flow Logs are not enabled🟢	1	🟠 x1, 🟢 x5	no data
🛡️ Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For App Services is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Containers is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Key Vault is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Servers is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Storage is not set to On🟢	1	🟢 x6	no data