DynamoDB tables are encrypted by default using AWS managed encryption keys. To increase control of the encryption and control the management of factors like key rotation, use a Customer Managed Key.
Using AWS managed keys does not allow for fine grained control
Enable server side encryption with a customer managed key
The following example will fail the aws-dynamodb-table-customer-key check.
The following example will pass the aws-dynamodb-table-customer-key check.