Benchmark: CIS v1.0.0
To obtain the latest version of the official guide, please visit http://benchmarks.cisecurity.org.
Overview
This security configuration Benchmark covers foundational elements of IBM Cloud. The recommendations detailed here are important security considerations when designing your infrastructure on IBM Cloud Services.
Profile Definitions
The following configuration profiles are defined by this Benchmark:
Level 1
Items in this profile intend to:
- be practical and prudent;
- provide security focused best practice hardening of a technology; and
- limit impact to the utility of the technology beyond acceptable means
Level 2
This profile extends the "Level 1" profile. Items in this profile exhibit one or more of the following characteristics:
- are intended for environments or use cases where security is more critical than manageability and usability
- acts as defense in depth measure
- may impact the utility or performance of the technology
- may include additional licensing, cost, or addition of third party software
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-ibm-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select CIS v1.0.0.
Run this benchmark in your terminal:
powerpipe benchmark run ibm_compliance.benchmark.cis_v100Snapshot and share results via Turbot Pipes:
powerpipe benchmark run ibm_compliance.benchmark.cis_v100 --shareBenchmarks
- 1 IAM
- 2 Storage
- 3 Maintenance, Monitoring and Analysis of Audit Logs
- 4 IBM Cloud Databases Family
- 5 Cloudant
- 6 Networking
- 7 Containers
- 8 Key Management
- 9 Security and Compliance
- 10 IBM Cloud Certificate Manager