MemoryDB clusters should use KMS encryption

Docs > Datadog Security > OOTB Rules > MemoryDB clusters should use KMS encryption

Description

MemoryDB clusters should use KMS encryption at rest to protect cached data, backups, and snapshots from unauthorized access.

Remediation

Enable encryption at rest for the cluster and select an AWS owned or customer-managed KMS key. For guidance, refer to Encrypting data at rest in MemoryDB.