▲ 28 r/Terraform
Built two Terraform templates for secure AWS infrastructure mapped to NIST 800-53 controls
Been deploying AWS infrastructure as code for a personal project while on active duty Navy. Figured I'd clean it up and share it as reusable templates since I couldn't find anything that explicitly mapped controls to NIST 800-53.
Two templates:
Secure Serverless App Stack — Lambda + API Gateway + DynamoDB + WAF with least-privilege IAM
Secure Static Site — S3 + CloudFront + WAF + security headers (HSTS, CSP, X-Frame-Options) + ACM + Route 53
Both include a NIST SP 800-53 control mapping table in the README so you know exactly which controls each resource satisfies (AC-2, AC-6, AU-2, SC-5, SC-8, SC-28, SI-3, etc.).
GitHub repos:
- github.com/KenFlowe/terraform-secure-serverless-app
- github.com/KenFlowe/terraform-secure-static-site
u/playa4040 — 5 days ago