Athena WorkGroup Does Not Have CloudWatch Logging Enabled
Overview
Enabling logging for a workgroup provides valuable insights into query activity, including user actions, query execution details, and potential security events. Without logging enabled, it can be difficult to track and investigate potential security incidents or unauthorized access to Athena data. This can lead to data breaches, compliance violations, and increased security risks.
Vendor
AWS
Cloud Service
Athena
Related Controls
Athena.4
References
https://docs.aws.amazon.com/athena/latest/ug/athena-cloudwatch-metrics-enable.html, https://docs.aws.amazon.com/securityhub/latest/userguide/athena-controls.html#athena-4
Severity
3
Item Types
AWS::Athena::WorkGroup