Data Sheet
Introducing ComplyScan Plus
- Cloud-native – A SaaS application that monitors and reports global AWS Backup job activity; utilizes IAM and KMS security authorization and roles; employs CloudTrail, CloudWatch and Slack alerting, logging and tagging
- Ensures Snapshot Policy Compliance – With snapshot monitoring and validation
- Ensures RTO/RPO – by providing AWS Backup snapshot validation services to meet your SLA requirements
- Accelerates Recovery – With snapshot pipeline workflow
- Insightful – Data visualized to show peaks, valleys, trends, and thresholds.
- Centralized – Single-pane-of-glass snapshot management across accounts, regions, services, AWS Backup Plans and On-Demand backups
- Supported – AWS EC2/EBS today; EFS, FSx/Ontap, RDS, S3, Storage Gateway coming soon
Easier Deployment
AWS Command Line
ComplyScan Setup Wizard
More Insightful
AWS Backup Audit Manager Reports
ComplyScan Reports
Critical New Controls
| Control name | Control description | Customizable parameters | AWS Config recording resource type | AWS Backup Audit Manager | ComplyScan |
| Backup resources protected by backup plan | Evaluates if resources are protected by a backup plan | None | AWS Backup: backup selection | √ | √ |
| Backup plan minimum frequency and minimum retention | Evaluates if backup frequency is at least [1 day] and retention period is at least [35 days] | Backup frequency; retention period | AWS Backup: backup plans | √ | √ |
| Backup prevent recovery point manual deletion | Evaluates if backup vaults do not allow manual deletion of recovery points except by certain AWS Identity and Access Management (IAM) roles | Up to 5 IAM roles that allow manual deletion of recovery points | AWS Backup: backup vaults | √ | √ |
| Backup recovery point encrypted | Evaluates if the recovery points are encrypted | None | AWS Backup: recovery points | √ | √ |
| Backup recovery point minimum retention | Evaluates if the recovery point retention period is at least [35 days] | Recovery point retention period | AWS Backup: recovery points | √ | √ |
| Cross-Region copy | Evaluates if a resource is configured to create copies of its backups to another AWS Region | AWS Region | AWS Backup: backup selection | √ | √ |
| Cross-account copy | Evaluates if a resource has a cross-account backup copy configured | AWS account ID | AWS Backup: backup selection | √ | √ |
| Backup Vault Lock | Evaluates if a resource is configured to have backups in locked backup vault | Min Retention Days; Max Retention Days | AWS Backup: backup selection | √ | √ |
| Backup Testing | Evaluates if backup testing is being done which is critical to NIST and other security frameworks | Accounts, Regions, Services, Zones | AWS Backup: backup selection | √ | |
| Snapshot activity | Monitors and Reports all AWS Backup on-demand and scheduled activity | Accounts, Regions, Users, Zones | AWS Backup: backup selection | √ | |
| Snapshot Cost | Evaluates snapshot resource costs | Accounts, Regions, Zones | AWS Backup: backup selection | √ | |
| Snapshot Validation | Validates snapshot integrity and viability to achieve RPO/RTO/SLA | Accounts, Regions, Services, Zones | AWS Backup: backup selection | √ | |
| Visualization | Dashboard with graphical representation of status, thresholds, and alerts | Accounts, ARN, Date, Regions, Services, Users, Zones and more | AWS Backup: backup selection | √ |
Join the ComplyScan+ Pilot Program
| What you get | What we need from you |
| ComplyScan Plus SaaS | Deploy as part of your AWS Backup environment |
| Free technical support to help configure AWS services | Pay for services (AWS) not provided by ComplyTrust |
| A free license for ComplyScan Plus for 3 years | Provide on-going feedback to about the status of deployment and features needed |
| Free white glove support for 3 years | Join by completing this ComplyScan Beta Registration Form |
