Backup recovery points should be encrypted at rest

amazon-backup
This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

This control ensures that AWS Backup recovery points are encrypted at rest, passing only if encryption is enabled.

An AWS Backup recovery point is a saved snapshot of your data at a specific time. Encrypting these recovery points enhances security, guarding against unauthorized access.

Remediation

For instructions on encrypting an AWS Backup recovery point, see Encryption for backups in AWS Backup in the AWS Backup Developer Guide.