AWS Config Compliance Enforcement

Project: AWS Config Managed Rules Practical Validation

Department: DevOPs

Team: Cloud Infrastructure Engineering

Team Leader: Chinazor Nwode

Co-Leader: Ifunanya Benedicta

As part of our continuous compliance validation program, we, the cloud security engineering team, conducted a controlled misconfiguration test in our AWS development environment.

Our objective was to:

1. Deliberately introduce specific misconfigurations into various AWS resources.
2. Observe AWS Config’s detection of these misconfigurations in real time.
3. Remediate each issue and confirm compliance was restored.

We executed each scenario using the STAR method so that the process is clear, reproducible, and aligned with our organizational compliance playbooks.

1. EC2 Launch Template Policy – IMDSv2 Enforcement

Rule: ec2-launch-template-imdsv2-check