Skip to content

Latest commit

 

History

History
15 lines (9 loc) · 1.5 KB

hardening-standards-cis.md

File metadata and controls

15 lines (9 loc) · 1.5 KB
description
CIS benchmark monitoring using Wazuh and Ossec for Hosts

Hardening Standards (CIS)

The DuploCloud platform orchestrates CIS benchmark monitoring for virtual machines using Wazuh and Ossec. Wazuh provides the Security Configuration Assessment (SCA) module which offers the user the best possible experience when performing scans on hardening and configuration policies. To check the SCA report, navigate to the SIEM dashboard and click Security Events. Using the search field, enter rule.groups: "sca". For more information, refer to the Wazuh SCA.

SIEM dashboard Security Events tab in the DuploCloud Portal

DuploCloud integrates with AWS Security Hub for cloud provider CIS posture and enables several other conformation packs, such as PCI and AWS Foundational Security Best Practices v1.0.0.

Currently, Azure and GCP need to be set up and managed manually out of band from their portals using Azure Security Center and GCP Security Command Center, respectively. DuploCloud will release the GCP command center integration sometime in Q2 2024 and Azure in Q4 2024.

The Secuity -> Standards page in the DuploCloud Portal