Account alternate contact should be configured

Description

Ensure that a security alternate contact is configured for your AWS account, so that any security advisories sent by AWS reach the appropriate security team members in your organization. Ideally, email contact details should point to an alias that forwards to more than one individual.

Remediation Steps

AWS Console

• Click on your account name at the top right corner of the console.

• From the drop-down menu, click Account.

• Scroll down to the Alternate Contacts section.

• Enter appropriate contact information for Security.

AWS CLI

• Run the following command to create a security alternate contact:

$ aws account put-alternate-contact \
    --alternate-contact-type=SECURITY \
    --email-address=security-team@megabank.com \
    --name="Security Team" \
    --phone-number="+1(408)555-1234" \
    --title="Security Team"

Documentation Links

Runtime

• Update the primary and alternate contact information