CIS Benchmark Features

Introduction

This topic describes the features found on the CIS Benchmark page.


Functionality Overview

The CIS Benchmark page lists each control and its state of compliance.

CloudCheckr uses its Best Practice Checks as a source of data for each of the controls.

Each control is categorized under one of the following areas of compliance: Identity and Access Management, Logging, Monitoring, or Networking.

This example shows the controls under Identity and Access Management.




Click (green plus sign) to see details on the Best Practice checks associated with that control, whether it is scored or not, its status (Correctly or Not Correctly Set), and any remediation comments.



Features

The table describes each of the features on the CIS Benchmark page.

To make it easier to view a smaller image, hover over the selected image to display the Magnify icon and click to increase the size.

Feature Example Description
Level 1 and Level 2 tabs Level 1 and Level 2 are security configuration profiles.

Level 1 includes controls that are practical, provide a clear security benefit, and do not limit the technology beyond acceptable means.

Level 2 includes controls that are intended for environments where security is paramount, acts as defense in-depth measure, and may inhibit the performance of the technology.

Category Each control is grouped under one of the following categories: Identity and Access Management, Logging, Monitoring, and Networking.
Control Name and description of a control in the AWS CIS Foundation report.
Plus icon Click to show the details about the selected control.
Minus icon Click to hide the details about the selected control.
Best Practice Check The name of the Best Practice Check associated with the selected control. The color and icon of the check indicates if it is passing or failing for your deployment.

Clicking the name of the check takes you to the location and details in the Best Practice report.

Remediation Comment

Text field where you can insert a message about remediation.
Submit button Click Submit to add the remediation comment.
Scoring   Indicates if compliance with a given recommendation impacts a benchmark score.
Set Correctly   Indicates if the the control is configured correctly for the selected deployment.
Slider   Controls with a Slider need the User to manually choose Yes or No to indicate if the condition is met (i.e. a manual attestation).

See Also:
CIS Benchmark
Total Compliance
Best Practice Report