AWS > Glue > AWS Glue Data Catalog CMK Encrypted
UNKNOWN
Source
CloudSploit
ID
aws-glue-data-catalog-cmk-encrypted

AWS Glue Data Catalog CMK Encrypted

Ensures that AWS Glue has data catalog encryption enabled with KMS Customer Master Key (CMK).

AWS Glue should have data catalog encryption enabled with KMS Customer Master Key (CMK) instead of AWS-managed Key in order to gain more granular control over encryption/decryption process.

Modify Glue data catalog to use CMK instead of AWS-managed Key to encrypt Metadata