CloudGuard Dome9 User Guide
Compliance Engine Rulesets & Rules
Dome9 Compliance Framework!
Dome9 Compliance Content management is be based on the unified mapping of all the Dome9 compliance checks to various security and compliance frameworks.
Our robust mapping mechanism, streamlines the bundle management processes and is based on one of the main Governance, Risk and Compliance (GRC) principles - unified risk and controls framework.
Dome9 Compliance Coverage:
|Security Compliance Framework||AWS||AZURE||GCP|
|CIS||supported today||supported today||supported today|
|NIST 800-53||supported today||supported today||supported today|
|PCI-DSS 3.2||supported today||supported today||supported today|
|HIPAA||supported today||supported today||Coming Soon|
|GDPR||supported today||supported today||Coming Soon|
|ISO27001||supported today||supported today||supported today|
|SOC2||supported today||supported today||supported today|
|SOX||Preview Available||Preview Available||Preview Available|
|NIST CSF v1.1||supported today||supported today||supported today|
|Fedramp||Preview Available||Preview Available||Preview Available|
|CSA CCM v3.0.1||supported today||Preview Available||Preview Available|
|Serverless Security||supported today||Coming Soon||Coming Soon|
|Containers Security||Preview Available||Coming Soon||Coming Soon|
Dome9 Compliance Engine is an end-to-end security and compliance solution for assessment, remediation and continuous security compliance enforcement. The Dome9 GSL (Governance Specification Language) is a syntax to define cloud security and compliance rules which can be applied in the Dome9 Compliance Engine.
The Cloud Security Posture Repository is a shared security and compliance knowledge platform for AWS, Azure and GCP. It provides an evolving set of security and compliance best practices, curated and developed by Dome9. The controls include risk and remediation details needed for security governance and compliance of public cloud environments.