New AWS Lambda Policies for Tenable.cs

Summary

Tenable Research has developed a new set of Tenable.cs policies to assess AWS Lambda. These policies provide automated assessment and hardening against some of the well known misconfigurations.

Policies include:

Ensure AWS Lambda function is configured with a Dead Letter Queue

Ensure AWS Lambda Functions have associated tags

Ensure AWS Lambda functions are configured to use provisioned concurrency

Ensure Code Signing is enabled for the AWS Lambda functions.

Ensure AuthType is set to 'AWS_IAM' for AWS Lambda function URLs

Ensure AWS Lambda function permissions have a source ARN specified

Target Release Date

Immediate 

Additional Notes:https://docs.aws.amazon.com/lambda/index.html