💡 More Cloud Hardening automated tasks
under review
Grigory Emelianov
In the early edition of Secfix in 2022 we mostly focused on cloud hardening essentials to pass ISO 27001.
With a next release we can add 10 more hardening tasks each for GCP, AWS, and Azure. These hardening tasks are helpful to maintain your security and strengthen the following controls:
- Identity and Access
- Storage and Logging
- Monitoring and Networking
Additional value
These would show up in the ISO 27001 Report feature as additional evidence and make your compliance report look more mature.
Fabiola Munguia
We are currently focusing on rebuilding the cloud checks logic to improve the experience and also get more reliable data.
Therefore, it will be our next focus in the product roadmap. What's coming:
- Daily sync of cloud checks
- Mark Automated Checks as Not Applicable in the UI itself (not via the CSMs)
- Updating the Cloud Checks instructions
- Multiple cloud checks that can be used simultaneously for ISO 27001, TISAX, NIS 2, GDPR and other standards
Grigory Emelianov
under review