
Option 1: Remediate and Implement Control
Based on the remediation recommendations provided in the platform for a control you haven’t implemented, you could follow the appropriate instructions to implement the control in question. Coming to the example provided above, the user withwrite
access to the aptible-misc environment can configure a log drain collecting and aggregating their container logs in a destination of choice. Doing this would be an acceptable implementation of the specific control, thereby remediating the issue of non-compliance.
Option 2: Ignore Implementation
You could also ignore the control implementation based on your organization’s judgment for the specific resource. Choosing to ignore the control implementation will signal to Aptible to also ignore the implementation of the particular control, which in the example above, was the aptible-misc environment. Doing so would no longer show you a warning in the UI indicating that you have not implemented the control and would ensure it does not affect your compliance readiness score. You can see control implementations you’ve ignored in the expanded view of each control. You can also unignore the control implementation if needed.