Open menu

The Center of Internet Security AWS Foundations Benchmark

CIS is a non-profit organization that has developed a global benchmark in helping organizations improve their security and compliance posture



What is it?

The Center for Internet Security (CIS) is a non-profit organization that has developed their own CIS Standards and CIS Benchmarks. These are now recognized as a global standard in helping organizations improve their security and compliance posture.

Why should I use the CIS Benchmark standard?

Security professionals have been using CIS templates and hardening guides for years. The CIS Benchmark is a great baseline standard for AWS and continuously evolves with the help of the CIS SecureSuite members and Consensus Community. By using its benchmarks, scoring methods and guidelines for your own business, you are also helping to safeguard the wider community against cyber threats.

How can Cloud Conformity help?

Cloud Conformity is CIS Security Software Certified for CIS Amazon Web Services Foundations Benchmark version 1.1.0. This allows you to run exportable reports on your AWS environments for internal and external audits against these benchmarks.

To do this:

  • Click on on the relevant AWS account (or all accounts) and head to “Reports”.
  • Select “CIS AWS Foundations”.
  • The report will run and become an exportable file.

You can also instantly see the status of your environments against the related rules in Cloud Conformity. Simply:

  • Head to “Browse All Checks”
  • Open "Filter Checks"
  • Select “CIS AWS Foundations Benchmark”
  • Scroll down to see the results

You can also use Cloud Conformity to produce management reports showing your compliance progress over time or produce deeply technical reports that allow system owners and engineers to remediate issues.

Cloud Conformity checks your infrastructure for CIS AWS Foundations Benchmark compliance with 52 rules currently supported.