The Center for Internet Security (CIS) is a non-profit organization focused on improving public and private sector cybersecurity readiness and response. The CIS Critical Security Controls (CSC) are a recommended set of actions for cyber defense that provide specific and actionable ways to stop today’s most pervasive and dangerous attacks. A principal benefit of the controls is that they prioritize and focus a smaller number of actions with high pay-off results.
The CIS Benchmarks, also known as CIS Security Standards, comprise 140+ configuration guidelines for various technology groups to safeguard systems against today’s evolving cyber threats. The process of checking for compliance within your hybrid and multi-cloud environments can be arduous and costly, and any kind of manual checks are subject to human error.
Runecast Analyzer automates the process of checking for compliance with CIS Benchmarks in Kubernetes, VMware vSphere, Microsoft Azure, native AWS public cloud resources, as well as Windows and Linux OS. Findings against both Level 1 and Level 2 recommendations are detailed, with each finding linked to the affected objects – in total, over 400 checks.
With Runecast Analyzer, you get year-round, 24/7 visibility into your audit compliance posture. It allows you to get immediate visibility into risks and non-compliances inherent in your environment, allowing you to identify gaps between where you are and a fully compliant state, and also show as soon as any objects move out of compliance.
The solution runs entirely on-premises, with no data leaving your control. All analysis takes place on the Runecast Analyzer appliance. Additionally, Runecast Analyzer is CIS Certified for both AWS and VMware vSphere. Move to a more proactive way of handling your compliance requirements!