CIS AWS v3.0 in 60 Seconds: Automate Compliance with Terraform

TL;DR: I've implemented a compliance engine into the cloud-audit tool that maps 62 CIS AWS v3.0 controls to automated checks with per-control Terraform remediation. Simply run cloud-audit scan --compliance cis_aws_v3 to quickly obtain the results. The HTML report clearly describes which controls passed and which failed, and also provides Terraform code snippets for quick fixes. 55 of the 62 controls are fully automated. Disclosure: I am the author of cloud-audit. What is the CIS AWS Foundations Benchmark? The CIS Amazon Web Services Foundations Benchmark is a comprehensive list of security configuration recommendations published by the Center for Internet Security. Version 3.0.0 includes 62 recommendations that define the baseline security posture every AWS account should meet. Generally, this is the most frequently cited AWS security standard, often used during audits, and is certainly required by compliance programs such as ISO 27001, SOC 2, and BSI C5. The problem with CIS complianc

CIS AWS v3.0 in 60 Seconds: Automate Compliance with Terraform

Related Articles

C Preprocessor tricks, tips, and idioms

Upgrade your NAS storage with this WD 2TB SSD - now $240 off during Amazon's Spring Sale

This car charger is a must for long road trips - and it's cheap

Top 10 Best Government

The Year Software Engineering Stopped Feeling Like Software Engineering

Related Articles

News
C Preprocessor tricks, tips, and idioms
Lobsters • 14m ago

News
Upgrade your NAS storage with this WD 2TB SSD - now $240 off during Amazon's Spring Sale
ZDNet • 18m ago

News
This car charger is a must for long road trips - and it's cheap
ZDNet • 22m ago

News
Top 10 Best Government
Medium Programming • 28m ago

News
The Year Software Engineering Stopped Feeling Like Software Engineering
Medium Programming • 45m ago