Secureframe monitors your infrastructure 24/7 for hundreds of types of anomalies and alerts you to vulnerabilities and misconfigurations as soon as they happen, including checking for things like:

• IAM Roles are configured in accordance with least-privilege access principles
• ELB logging is enabled and ports are secure
• KMS encryption keys are configured separately for separate applications and have restricted access
• RDS automatic backups are enabled
• Data and logging are encrypted for key services such as CloudTrail, EBS, RDS, and S3

Secureframe pulls evidence for dozens of types of AWS resources and their configuration as it relates to security and compliance, including:

• EC2 Instances
• S3 Buckets
• IAM Roles and their associated policies AWS Inspector vulnerability reports