standard
turbot/aws_compliance

Trigger: Detect & correct DynamoDB table with point-in-time recovery disabled

Detect DynamoDB tables with point-in-time recovery disabled and then skip or enable point-in-time recovery.

Query

select
concat(name, ' [', account_id, '/', region, ']') as title,
name,
region,
sp_connection_name as conn
from
aws_dynamodb_table
where
lower(
point_in_time_recovery_description ->> 'PointInTimeRecoveryStatus'
) = 'disabled';

Schedule

15m

Tags

category = Compliance
mod = aws
service = AWS/DynamoDB