Ensure that your Amazon DynamoDB table backups have set a minimum backup retention period in order to achieve compliance requirements in your organization. The retention period represents the number of days to retain on-demand backups before these are being deleted. The retention period can be configured only for DynamoDB table backups managed by AWS Backup service. Before running this rule by the Trend Cloud One™ – Conformity engine, the retention period for your Amazon DynamoDB table backups needs to be defined in the conformity rule settings, in your Conformity account.
Having a minimum retention period set for your Amazon DynamoDB table backups will enforce your backup strategy to follow best practices as specified in the compliance regulations. Retaining Amazon DynamoDB backup data for a longer period of time will allow you to handle more efficiently your data restoration process in the event of a failure.
Audit
To determine if your Amazon DynamoDB tables have a sufficient backup retention period configured for on-demand backups, perform the following operations:
Getting the retention period for the DynamoDB table backups managed by AWS Backup via AWS Command Line Interface (AWS CLI) is not currently supported.Remediation / Resolution
To update your Amazon DynamoDB table backup configuration in order to extend the backup retention period for compliance purposes, perform the following operations:
Setting the retention period for the DynamoDB table backups managed by AWS Backup via AWS Command Line Interface (AWS CLI) is not currently supported.