Header menu logo FsCDK

SecurityToggles Module

Toggle configurations for optional AWS security services These services have associated costs and should be enabled based on security requirements

Types

Type Description

AWSConfigConfig

Configuration for enabling AWS Config **Cost Consideration:** AWS Config charges are based on: - Configuration items recorded - Configuration change evaluations Typical cost: $0.003 per configuration item **When to enable:** - Compliance auditing requirements - Change tracking for security/operational purposes - Configuration drift detection **Note:** AWS Config must be enabled via AWS Console or CLI Use this as documentation and manual setup guide

GuardDutyConfig

Configuration for enabling GuardDuty threat detection **Cost Consideration:** GuardDuty charges are based on: - CloudTrail events analyzed - VPC Flow Logs analyzed - DNS logs analyzed Typical cost: $4-5 per million events **When to enable:** - Production environments with sensitive data - Compliance requirements (PCI-DSS, HIPAA) - Environments requiring threat detection **Note:** GuardDuty must be enabled via AWS Console or CLI, not CloudFormation Use this as documentation and manual setup guide

Functions and values

Function or value Description

defaultAWSConfig

Full Usage: defaultAWSConfig

Returns: AWSConfigConfig
Returns: AWSConfigConfig

defaultGuardDuty

Full Usage: defaultGuardDuty

Returns: GuardDutyConfig
Returns: GuardDutyConfig

Type something to start searching.