Plugin Title KMS Scheduled Deletion
Cloud AWS
Category KMS
Description Detects KMS keys that are scheduled for deletion
More Info Deleting a KMS key will permanently prevent all data encrypted using that key from being decrypted. Avoid deleting keys unless no encrypted data is in use.
AWS Link http://docs.aws.amazon.com/kms/latest/developerguide/deleting-keys.html
Recommended Action Disable the key deletion before the scheduled deletion time.


Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now