AWS - CIS Amazon Web Services Foundations Benchmark Compliance
Initial AWS account Center for Internet Security (CIS) Amazon Web Services Foundations Benchmark 1.0 compliance details can be found in Public-CIS_Amazon_Web_Services_Foundations_Benchmark_v1.0.0.docx.
About the Center for Internet Security
"The Center for Internet Security (CIS) is a 501(c)(3) organization dedicated to enhancing the cybersecurity readiness and response among public and private sector entities. Utilizing its strong industry and government partnerships, CIS combats evolving cybersecurity challenges on a global scale and helps organizations adopt key best practices to achieve immediate and effective defenses against cyber attacks. CIS is home to the Multi-State Information Sharing and Analysis Center (MS-ISAC), CIS Security Benchmarks, and CIS Critical Security Controls."
About the CIS Amazon Web Services Foundations Benchmark
"[The CIS Amazon Web Services Foundations Benchmark] provides prescriptive guidance for configuring security options for a subset of Amazon Web Services with an emphasis on foundational, testable, and architecture agnostic settings. Specific Amazon Web Services in scope for this [benchmark] include:
- AWS Identity and Access Management (IAM)
- AWS Config
- AWS CloudTrail
- AWS CloudWatch
- AWS Simple Notification Service (SNS)
- AWS Simple Storage Service (S3)
- AWS VPC (Default)"
To obtain the latest version of this [benchmark], please visit https://benchmarks.cisecurity.org."