The National Institute of Standards and Technology (NIST) published the NIST special publication (SP) 800-53, which offers security and privacy controls for federal information systems and organizations. Per the Office of Management and Budget (OMB), the NIST standards and policies are mandatory for all non-national security systems run by federal agencies in the USA.
Runecast Analyzer automates the process of checking VMware vSphere, vSAN, and NSX, as well as native AWS public cloud resources for compliance against NIST standards – in total, 221 checks. Findings are mapped to each specific NIST control, clearly showing both the control ID and the relevant VMware Audit Item detailed in the standard. Each finding is also mapped back to the affected objects, giving you details on how to manually audit and remediate any non-compliances.
With Runecast Analyzer, you get year-round, 24/7 visibility into your audit compliance posture. It allows you to get immediate visibility into risks and non-compliances inherent in your environment, allowing you to identify gaps between where you are and a fully compliant state, and also show as soon as any objects move out of compliance. Additionally, each finding details on how to manually audit and remediate any non-compliances.
The solution runs entirely on-premises, with no data leaving your control. All analysis takes place on the Runecast Analyzer appliance. Move to a more proactive way of handling your compliance requirements!