AWS introduces declarative controls for VPC Encryption Controls
AWS now offers declarative policies for VPC Encryption Controls, enabling centralized management and consistent application across all VPCs in monitoring or enforcement mode.
AWS has introduced declarative policies for VPC Encryption Controls, allowing customers to centrally define and manage their desired VPC Encryption Controls settings and apply them across all VPCs in their environment. This enhancement enables security teams to enforce encryption in transit consistently across all existing and future VPCs, simplifying compliance with standards such as HIPAA, FedRAMP, and PCI. Previously, customers had to configure these settings individually for each VPC. With this launch, a single declarative policy can be used to enforce encryption controls settings organization-wide, providing central visibility into the status of all accounts and VPCs. Declarative policies for VPC Encryption Controls are available in all AWS regions that support VPC Encryption Controls, with no additional charge when used with AWS Organizations.