Security contact email

문서 > Datadog 보안 > Code Security > Infrastructure as Code (IaC) Security > IaC Security Rules > Security contact email

이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Metadata

Id: 34664094-59e0-4524-b69f-deaa1a68cce3

Cloud Provider: azure

Framework: Terraform

Severity: Medium

Category: Best Practices

Learn More

Provider Reference

Description

Defining a security contact email in the azurerm_security_center_contact resource is essential for ensuring that security alerts and notifications from Azure are sent to the correct personnel. If the email attribute is omitted, as shown below, important security incidents may go unnoticed, increasing the risk of delayed responses to threats:

resource "azurerm_security_center_contact" "insecure" {
  phone = "+1-555-555-5555"
  alert_notifications = true
  alerts_to_admins    = true
}

To address this, always specify the email attribute to ensure security alerts reach a monitored mailbox:

resource "azurerm_security_center_contact" "secure" {
  email = "contact@example.com"
  phone = "+1-555-555-5555"
  alert_notifications = true
  alerts_to_admins    = true
}

Compliant Code Examples

resource "azurerm_security_center_contact" "negative" {
  email = "contact@example.com"
  phone = "+1-555-555-5555"

  alert_notifications = true
  alerts_to_admins    = true
}

Non-Compliant Code Examples

resource "azurerm_security_center_contact" "positive" {
  phone = "+1-555-555-5555"

  alert_notifications = true
  alerts_to_admins    = true
}