Risk Details
Audit Logging for AI Service APIs is Disabled
CloudTrail/Azure Monitor/Cloud Audit Logs are not configured to log API activity for critical AI services like Amazon SageMaker, Azure Machine Learning, or Google AI Platform.
Low Severity
Open
AWS
Affected Resources
- AWS Account: 123456789012
Enable Audit Logging for AI Services
- In the respective cloud console, navigate to the audit logging service (e.g., CloudTrail).
- Create or modify a trail/log to include all management and data events for the relevant AI services.
- Ensure logs are stored securely in a central, access-controlled location.
- Set up alerts for suspicious API activity.