UNKNOWN
Source
CloudSploit
ID
backup-vault-encrypted

Backup Vault Encrypted

Ensure that your Amazon Backup vaults are using AWS KMS Customer Master Keys instead of AWS managed-keys (i.e. default encryption keys).

When you encrypt AWS Backup using your own AWS KMS Customer Master Keys (CMKs) for enhanced protection, you have full control over who can use the encryption keys to access your backups.

Encrypt Backup Vault with desired encryption level