CIS Hardened Images on Amazon Web Services (AWS)
CIS Hardened Images on AWS
All of these images are available on AWS Marketplace and AWS GovCloud (US) region. Those also available on the AWS Intelligence Community are noted below, excluding containers for AWS GovCloud US region. Free trials are available in AWS Marketplace for the following CIS Hardened Images: Amazon Linux 2, CentOS Linux 7, Red Hat Enterprise Linux 7, Ubuntu Linux 18.04, Microsoft Windows Server 2016, and Microsoft Windows Server 2016 STIG. Follow the links below to access free trials in AWS Marketplace for these Images.
CIS and AWS Work Together
CIS Hardened Images Free Trials Available in AWS Marketplace
Text: Does your organization spend countless resources hardening operating systems in the cloud? That’s why CIS pre-hardens these virtual machine (VM) images to CIS Benchmark standards. See how these CIS Hardened Images work by trying one in your cloud environment. Free trials are available for select CIS Hardened Images in AWS Marketplace!
Free trials are available for:
- Amazon Linux 2
- CentOS Linux 7
- Microsoft Windows Server 2016
- Microsoft Windows Server 2016 STIG
- Red Hat Enterprise Linux 7
- Ubuntu Linux 18.04
CIS AWS Foundations Benchmark
AWS joined the CIS community consensus process that created the CIS AWS Foundations Benchmark. The purpose of this CIS Benchmark is to provide prescriptive guidance for your AWS account. It provides configuration recommendations for identity and access management, monitoring and logging, and networking.
Meet your Shared Responsibility on AWS with CIS
Depending on what your organization’s cloud infrastructure looks like, the responsibility of security actions varies between the cloud user and Amazon Web Services. Simply put, the AWS Shared Responsibility Model outlines what security actions an organization is responsible for and what security actions AWS manages.
CIS offers globally-recognized cybersecurity resources, including the CIS Hardened Images, that can help cloud consumers meet the expectations of the shared responsibility model. Learn more in our guide, Cloud Security and the AWS Shared Responsibility Model with CIS .
Security Automation & Orchestration (SAO)
CIS Benchmarks and CIS Hardened Images are part of the AWS SAO methodology. AWS SAO enables AWS customers to constrain, track, and publish continuous risk treatments, configurations, and assimilate DevOps routines into a “Type Accredited” secure AWS architecture. This architecture is configured to converge common security frameworks (e.g. FedRAMP, DoD CC SRG, PCI-DSS, IRS 1075, etc.) through the use of security as code practices. Learn More