CloudGuard Dome9 Help

Compliance Engine Rulesets & Rules


Dome9 Compliance Content management is be based on the unified mapping of all the Dome9 compliance checks to various security and compliance frameworks.

Our robust mapping mechanism, streamlines the bundle management processes and is based on one of the main Governance, Risk and Compliance (GRC) principles - unified risk and controls framework.

 

Dome9 Compliance Frameworks Coverage

Ruleset Name Description Cloud Provider
AWS CIS Foundations v. 1.2.0 Automated Validation of AWS CIS V 1.2.0 AWS
AWS Dome9 SOC2 based on AICPA TSC 2017

Automated Validation of SOC2 Compliance based on AICPA TSC 2017

AWS
AWS Dome9 Serverless Architectures Security Automated Validation of Serverless Architecture best practices AWS
AWS NIST CSF v1.1 Automated Validation of NIST CSF V1.1 for AWS AWS
AWS ISO 27001:2013 Automated Validation of ISO 27001:2013 Requirements for AWS AWS
AWS CSA CCM v.3.0.1 Automated Evaluation of Cloud Controls Matrix, CCM v3.0.1 for AWS AWS
AWS GDPR Readiness Automated GDPR Assessment for AWS AWS
AWS NIST 800-53 Rev 4 Automated Validation of NIST Special Publication 800-53 (Rev. 4). AWS
AWS CIS Foundations v. 1.1.0 Automated Validation of AWS CIS V 1.1.0 AWS
AWS Dome9 S3 Bucket Security Automated Validation of S3 best practices and potential misconfiguration detection AWS
AWS HIPAA Automated Validation of U.S. Health Insurance Portability and Accountability Act (HIPAA) AWS
AWS Dome9 Best Practices Dome9 Best Practices for securing AWS Account AWS
AWS Dome9 CheckUp AWS Dome9 CheckUp AWS
AWS PCI-DSS 3.2 Automated Validation of Payment Card Industry (PCI) Data Security Standard Version 3.2 - April 2016 AWS
AWS Dome9 Network Alerts Dome9 Network Alerts for AWS AWS
Azure CIS Foundations v. 1.1.0 Automated Validation of Azure CIS V 1.0.0 Azure
Azure HIPAA Automated Validation of U.S. Health Insurance Portability and Accountability Act (HIPAA) Azure
Azure Dome9 SOC2 based on AICPA TSC 2017

Automated Validation of SOC2 Compliance based on AICPA TSC 2017

Azure
Azure NIST CSF v1.1 Automated Validation of NIST CSF V1.1 for Azure Azure
Azure ISO 27001:2013 Automated Validation of ISO 27001:2013 Requirements for Azure Azure
Azure GDPR Readiness Automated GDPR Assessment for Azure Azure
Azure NIST 800-53 Rev 4 Automated Validation of NIST Special Publication 800-53 (Rev. 4). Azure
Azure PCI-DSS 3.2 Automated Validation of Payment Card Industry (PCI) Data Security Standard Version 3.2 - April 2016 Azure
Azure CIS Foundations v. 1.0.0 Automated Validation of Azure CIS V 1.0.0 Azure
Azure Dome9 CheckUp Azure Dome9 CheckUp Azure
Azure Dome9 Best Practices Dome9 Best Practices for securing Azure Account Azure
Azure Dome9 Network Alerts Dome9 Network Alerts for Azure Azure
GCP Dome9 SOC2 based on AICPA TSC 2017

Automated Validation of SOC2 Compliance based on AICPA TSC 2017

Google
GCP NIST CSF v1.1 Automated Validation of NIST CSF V1.1 for GCP Google
GCP ISO 27001:2013 Automated Validation of ISO 27001:2013 Requirements for GCP Google
GCP NIST 800-53 Rev 4 Automated Validation of NIST Special Publication 800-53 (Rev. 4). Google
GCP PCI-DSS 3.2 Automated Validation of Payment Card Industry (PCI) Data Security Standard Version 3.2 - April 2016 Google
GCP CIS Foundations v. 1.0.0 Automated Validation of GCP CIS V 1.0.0 Google
GCP Dome9 CheckUp GCP Dome9 CheckUp Google
GCP Dome9 Best Practices Dome9 Best Practices for securing GCP Account Google
GCP Dome9 Network Alerts Dome9 Network Alerts for GCP Google

Check out our Rules

Dome9 Compliance Engine is an end-to-end security and compliance solution for assessment, remediation and continuous security compliance enforcement. The Dome9 GSL (Governance Specification Language) is a syntax to define cloud security and compliance rules which can be applied in the Dome9 Compliance Engine.

The Dome9 Cloud Security Posture Repository is a shared security and compliance knowledge platform for AWS, Azure and GCP. It provides an evolving set of security and compliance best practices, curated and developed by Dome9. The controls include risk and remediation details needed for security governance and compliance of public cloud environments.

See also

The CloudGuard Dome9 GSL Language

The CloudGuard Dome9 GSL Language

Cloud Security Posture Repository (CSPR)