Ensure that automated (scheduled) backups are created for all Cloud SQL database instances available within your Google Cloud Platform (GCP) account, in order to protect against data deletion and/or data corruption.
This rule resolution is part of the Conformity Security & Compliance tool for GCP.
By default, automated backups are not configured for Cloud SQL instances. Automated backups provide a quick and efficient way to restore an SQL database instance to recover lost data or recover from a problem with that instance.
Audit
To determine if your Google Cloud SQL database instances are configured with automated backups, perform the following operations:
Remediation / Resolution
To enable and configure automated backups for your Google Cloud SQL database instances, perform the following operations:
References
- Google Cloud Platform (GCP) Documentation
- Overview of backups
- Creating and managing on-demand and automatic backups
- CIS Security Documentation
- Securing Google Cloud Computing Platform
- GCP Command Line Interface (CLI) Documentation
- gcloud projects list
- gcloud sql instances list
- gcloud sql instances describe
- gcloud sql instances patch