Enforce VPC Flow Logs on VPCs

Objective:Ensure VPCs are configured with flow logs enabled to capture traffic information.

Control Family:

Network Security

Threats:

ID	Title	Description
CCC.VPC.TH04	Lack of Network Visibility due to Disabled VPC Flow Logs	VPC subnets with disabled flow logs lack critical network traffic visibility, which can lead to undetected unauthorized access, data exfiltration, and network misconfigurations. This lack of visibility increases the risk of undetected security incidents.

NIST CSF:

PR.PT-1

CCM:

IVS-06

ISO_27001:

2013 A.12.4.1

NIST_800_53:

AU-2

CCC.VPC.C04.TR01:When any network traffic goes to or from an interface in the VPC, the service MUST capture and log all relevant information.

TLP:

tlp_amber

tlp_red