github.com/turbot/steampipe@v1.7.0-rc.0.0.20240517123944-7cef272d4458/pkg/control/testdata/aws_dummy/cis_v130/docs/cis-overview.md

github.com/turbot/steampipe@v1.7.0-rc.0.0.20240517123944-7cef272d4458/pkg/control/testdata/aws_dummy/cis_v130/docs/cis-overview.md (about)

     1  To obtain the latest version of the official guide, please visit http://benchmarks.cisecurity.org. 
     2  
     3  ## Overview
     4  The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance for configuring security options for a subset of Amazon Web Services with an emphasis on foundational, testable, and architecture agnostic settings. Specific Amazon Web Services in scope include:
     5  
     6  - AWS Identity and Access Management (IAM)
     7  - AWS Config
     8  - AWS CloudTrail
     9  - AWS CloudWatch
    10  - AWS Simple Notification Service (SNS)
    11  - AWS Simple Storage Service (S3)
    12  - AWS VPC (Default)
    13  
    14  ## Profiles
    15  
    16  ### Level 1
    17  Items in this profile intend to:
    18  - be practical and prudent;
    19  - provide a clear security benefit; and
    20  - not inhibit the utility of the technology beyond acceptable means.
    21  
    22  ### Level 2 (extends Level 1)
    23  This profile extends the "Level 1" profile. Items in this profile exhibit one or more of the following characteristics:
    24  - are intended for environments or use cases where security is paramount
    25  - acts as defense in depth measure
    26  - may negatively inhibit the utility or performance of the technology.