Initialize ops repository
This commit is contained in:
vaultsovereign
22
70-audits/checklists/weekly.md
Normal file
22
70-audits/checklists/weekly.md
Normal file
@@ -0,0 +1,22 @@
|
||||
# Weekly Drift Control
|
||||
|
||||
## Identity
|
||||
|
||||
- Review active leases; revoke anything unused or unclear.
|
||||
- Confirm least-privilege matches reality (roles/policies still correct).
|
||||
- Confirm no new long-lived credentials exist without rotation plan.
|
||||
|
||||
## Backups
|
||||
|
||||
- Verify latest backups completed for all critical sets.
|
||||
- Confirm at least one restore proof is recent (per backup cadence).
|
||||
|
||||
## Inventory / Naming
|
||||
|
||||
- Confirm new systems/services are inventoried and named `<role>-<scope>-<id>`.
|
||||
- Rename unclear entries before deleting anything.
|
||||
|
||||
## Core boundary
|
||||
|
||||
- Confirm critical changes still originate only from `op-core-vm`.
|
||||
|
||||
Reference in New Issue
Block a user