Glue Job Does Not Have CloudWatch Logging Enabled

Overview

UPDATE: Security Hub retired this control and removed it from all standards.

This control checks whether an AWS Glue job has logging enabled. The control fails if the job doesn't have logging enabled.

Audit logs track and monitor system activities. They provide a record of events that can help you detect security breaches, investigate incidents, and comply with regulations. Audit logs also enhance the overall accountability and transparency of your organization.

Vendor

AWS

Cloud Service

Glue

References

https://docs.aws.amazon.com/securityhub/latest/userguide/glue-controls.html#glue-2, https://docs.aws.amazon.com/glue/latest/dg/monitor-continuous-logging-enable.html

Severity

Item Types

AWS::Glue::Job

Overview​

Vendor​

Cloud Service​

References​

Severity​

Item Types​