Severity : High
Description: Sending CloudTrail logs to CloudWatch is only useful if metrics are setup to detect risky activity from those logs. There are numerous metrics that should be used. For the exact filter patterns, please see this plugin on GitHub: https://github.com/cloudsploit/scans/blob/master/monitoringMetrics.
Remediation Steps : Enable metric filters to detect malicious activity in CloudTrail logs sent to CloudWatch.
Description: This control ensures that CloudWatch monitoring metrics are configured to show the reliability, availability and performance of EC2. CloudWatch Metrics are data about the performance of systems and are grouped namespace, and then by the various dimension combinations within each namespace. Metric enables to query multiple CloudWatch metrics and use math expressions to create new time series based on these metrics and visualize the resulting time series on the CloudWatch console and add them to dashboards.
...