The Centre for Internet Stability (CIS) has unveiled a few new CIS Hardened Images. CIS built two of these new hardened virtual devices (VMs) on Amazon Internet Solutions (AWS) Graviton2 processors: CIS Hardened Images for Ubuntu Linux 20.04 and Amazon Linux 2. The third hardened VM for Microsoft Home windows 2019 STIG is readily available on the AWS, Microsoft Azure, Google Cloud Platform, and Oracle Cloud Marketplaces.

Look at all CIS Hardened Images

Why Use CIS Hardened VMs?

CIS Hardened Images provide the globally identified expectations of the CIS Benchmarks to the cloud. CIS Benchmarks are consensus-based safe configuration recommendations. They are an appropriate standard to help meet compliance for: HIPAA, PCI DSS, NIST, DoD Cloud Computing SRG, and FedRAMP. Simply because CIS builds these hardened VMs to CIS Benchmark expectations, they can also help meet compliance to these frameworks.

In addition, these hardened VMs provide:

  • Upfront price savings – Functioning in the cloud eradicates the require to commit in hardware as your business’s requires alter.
  • No servicing burden – CIS patches these hardened VMs routinely for application updates, vulnerabilities, and new CIS Benchmark releases.
  • Impartial safe configurations– CIS Benchmarks are the only consensus-based safe configuration recommendations each formulated and approved by business, business, government, and academia.

Each CIS Hardened Graphic involves a CIS-CAT Pro Assessment report. CIS-CAT evaluates the application of suggested coverage settings on a program in accordance to the CIS Benchmark. In every single hardened VM, the evaluation report demonstrates the CIS Benchmark suggestions utilized to the CIS Hardened Graphic. A README text file accompanies the report, which lists any exceptions vital for that CIS Hardened Graphic to operate in the cloud.

Find out much more about CIS hardened VMs

CIS Hardened Images on AWS Graviton2 Processors

AWS custom made builds AWS Graviton processors utilizing 64-bit Arm Neoverse cores. AWS Graviton2 processors supply forty% much better value functionality as opposed to current generation x86-based occasions. In addition to the hardening from CIS, these new hardened VMs on AWS Graviton2 processors characteristic important abilities that permit developers to operate cloud native purposes securely. Illustrations contain the normally-on 256-bit DRAM encryption and fifty% speedier for every main encryption functionality as opposed to initial-generation AWS Graviton.

Entry CIS Hardened Images on AWS Graviton2:

Help Meet STIG Compliance with CIS Hardened Images

We are in a multi-framework period. A lot of corporations ought to comply with various cybersecurity procedures and regulatory and legal frameworks. Meeting compliance for these frameworks is easier claimed than performed.

CIS STIG Hardened Images are a new possibility for configuring techniques in accordance to CIS and DISA STIGs in the cloud. Developed to the suggestions of the CIS STIG Benchmarks, these Images have the existing consensus-based CIS Benchmark Amount one and Amount 2 profiles mapped to relevant STIG suggestions. They also contain a new STIG profile that specifics supplemental prerequisites from the STIG not included in the Amount one and Amount 2 profiles to signify all suggestions desired to meet the STIG.

Entry the new CIS STIG hardened VMs for Home windows Server 2019 STIG on AWS, Azure, GCP, and Oracle Cloud Marketplaces.

Utilizing CIS Hardened Images built to CIS Benchmark suggestions can help IT professionals not only safe their enterprise cloud environments, but also offer proof of compliance towards popular frameworks.

Entry full checklist of CIS Hardened Images

Copyright © 2021 IDG Communications, Inc.