standard
turbot/aws_compliance

Trigger: Detect & correct accounts without alternate security contact

Detect accounts without alternate security contact and then add alternate security contact.

Query

with alternate_security_contact as (
select
count(name) as security_contact_count
from
aws_account_alternate_contact
where
contact_type = 'SECURITY'
)
select
concat(a.title, ' [', a.account_id, ']') as title,
a.sp_connection_name as conn
from
aws_account as a,
alternate_security_contact as c
where
c.security_contact_count <= 0;

Schedule

15m

Tags

category = Compliance
mod = aws
service = AWS/Account