Login

Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Rule: RDS DB Instance Backup Should Be Enabled

This rule ensures that RDS DB instance backup is enabled for data protection and disaster recovery.

RuleRDS DB instance backup should be enabled
FrameworkHIPAA
Severity
Medium

Rule Description:

In order to comply with HIPAA (Health Insurance Portability and Accountability Act) regulations, the backup feature of Amazon RDS (Relational Database Service) DB instances should be enabled. Enabling backups ensures that valuable data stored in the DB instances can be recovered in case of accidental deletion, corruption, or system failures.

Troubleshooting Steps (if applicable):

If backup is not already enabled for an RDS DB instance, follow these troubleshooting steps to enable it:

  2. 1.
    Verify the current backup status of the RDS DB instance.
  4. 2.
    If backups are not enabled, proceed to the next step.
  6. 3.
    Identify the appropriate Backup Retention Period for your specific HIPAA requirements.
  8. 4.
    Enable automated backups for the RDS DB instance.
  10. 5.
    Validate the backup settings to confirm that the backup feature is successfully enabled.

Necessary Code (if applicable):

The following code snippet can be used to enable automated backups for an RDS DB instance:

aws rds modify-db-instance --db-instance-identifier <db-instance-identifier> --backup-retention-period <backup-retention-period>

Replace 

<db-instance-identifier>
with the identifier of the RDS DB instance, and 
<backup-retention-period>
with the desired backup retention period in days.

Step-by-Step Guide for Remediation:

Follow these step-by-step instructions to enable RDS DB instance backup for HIPAA compliance:

  2. 1.
    Login to your AWS console.
  4. 2.
    Navigate to the RDS service.
  6. 3.
    Select the region where your RDS DB instance is located.
  8. 4.
    Locate and click on the RDS DB instance that needs backup enabled.
  10. 5.
    In the "Actions" dropdown menu, select "Modify".
  12. 6.
    Scroll down to the "Backup" section.
  14. 7.
    Enable the "Backup Retention Period" option.
  16. 8.
    Set the appropriate backup retention period according to your HIPAA compliance requirements.
  18. 9.
    Scroll to the bottom and click on the "Modify DB Instance" button to save the changes.
  20. 10.
    Wait for the modification to complete. This might take a few minutes.
  22. 11.
    Once the modification is complete, confirm that the backup feature is successfully enabled by going back to the RDS DB instance details page.
  24. 12.
    Check that the "Backup Retention Period" value reflects the desired setting.

By following the above steps, automated backups will be enabled for your RDS DB instance, ensuring compliance with HIPAA regulations.

Is your System Free of Underlying Vulnerabilities?
Find Out Now