More Info:

Ensure that Bigtable cluster tables are encrypted.

Risk Level

High

Address

Security

Compliance Standards

SOC2, NIST, GDPR, ISO27001, HIPAA, HITRUST, NISTCSF

Triage and Remediation

Remediation

To remediate the misconfiguration “Bigtable Cluster Tables Should Be Encrypted” for GCP using GCP console, follow the below steps:

  1. Open the Google Cloud Console and navigate to the Bigtable instance that needs to be remediated.
  2. Click on the name of the instance to open its details page.
  3. In the left-hand menu, click on “Encryption”.
  4. Under “Encryption at rest”, select “Customer-managed encryption keys (CMEK)”.
  5. Choose a key from the list of existing keys or create a new one by clicking on “Create a key”.
  6. If creating a new key, enter a name and select a location for the key.
  7. Click “Create” to create the key.
  8. Once a key is selected or created, click “Save” to enable encryption for the Bigtable instance.
  9. Repeat these steps for each Bigtable instance that needs to be remediated.

By following these steps, you can enable encryption for Bigtable Cluster Tables on GCP using GCP console.

Additional Reading: