Benchmark: IT Governance-1
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-azure-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select IT Governance-1.
Run this benchmark in your terminal:
powerpipe benchmark run azure_compliance.benchmark.rbi_itf_nbfc_v2017_it_governance_1Snapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_compliance.benchmark.rbi_itf_nbfc_v2017_it_governance_1 --shareBenchmarks
Controls
- System updates should be installed on your machines
- A vulnerability assessment solution should be enabled on your virtual machines
- Kubernetes Services should be upgraded to a non-vulnerable Kubernetes version
- Vulnerability assessment should be enabled on SQL Managed Instance
- Subscriptions should have a contact email address for security issues
- Email notification for high severity alerts should be enabled
- Email notification to subscription owner for high severity alerts should be enabled
- SQL databases should have vulnerability findings resolved
- Vulnerability assessment should be enabled on your SQL servers