Skip to main content

Athena WorkGroup Does Not Have CloudWatch Logging Enabled

Overview

Enabling logging for a workgroup provides valuable insights into query activity, including user actions, query execution details, and potential security events. Without logging enabled, it can be difficult to track and investigate potential security incidents or unauthorized access to Athena data. This can lead to data breaches, compliance violations, and increased security risks.

Vendor

AWS

Cloud Service

Athena

Athena.4

References

https://docs.aws.amazon.com/athena/latest/ug/athena-cloudwatch-metrics-enable.html, https://docs.aws.amazon.com/securityhub/latest/userguide/athena-controls.html#athena-4

Severity

3

Item Types

AWS::Athena::WorkGroup