CIS Benchmarks May 2022 Update
The following CIS Benchmarks have been updated or recently released. We've highlighted the major updates below. Each Benchmark includes a full changelog that references all changes.
CIS Google Android Benchmark v1.4.0
- Includes updates and cleanup for all audit and remediation steps, updates to CIS Critical Security Controls (CIS Controls) Mappings from v6 to v7/v8, as well as new recommendations for Bluetooth, user profiles, and third-party keyboards added.
A huge thank you to the CIS Android Community for making this Benchmark happen. Special thanks to Chantel Duckworth.
Download the CIS Google Android Benchmark v1.4.0 in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
CIS Amazon Elastic Kubernetes Service (EKS) Benchmark v1.1.0
- The update includes support for the recommendation to utilize container-optimized OS along with updated audit logging recommendations and audit methods.
A huge thank you to the entire CIS Kubernetes Community for making this happen. Special thanks to Paavan Mistry, Nick Gibbon, and Rory McCune.
Download the CIS Amazon EKS Kubernetes Benchmark v1.1.0 in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
CIS Oracle Cloud Infrastructure Foundations Benchmark v1.2.0
- Updates include mappings to all of the recommendations in the CIS Controls v8, multiple recommendations regarding encryption with customer-managed keys, recommendations addressing new and various access control mechanisms, and improved syntax for audit and remediation steps.
A huge thank you to the entire CIS Oracle Cloud Community for making this happen.
Download the CIS Oracle Cloud Infrastructure Foundations Benchmark v.1.2.0 in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
Four Updated CIS Benchmarks for Oracle MySQL
The following CIS Oracle MySQL Benchmarks have received their final updates:
- CIS Oracle MySQL Community Server 5.6 Benchmark v2.0.0
- CIS Oracle MySQL Enterprise Edition 5.6 Benchmark v2.0.0
We've also updated the following CIS Oracle MySQL Benchmarks:
- CIS Oracle MySQL Community Server 5.7 Benchmark v2.0.0
- CIS Oracle MySQL Enterprise Edition 5.7 Benchmark v2.0.0
A lot of effort has gone into analyzing and adding content to these Benchmarks based on changes identified during the previous development and release of the CIS Oracle MySQL 8.0 Enterprise Edition Benchmark v1.0.0. A huge thank you to the entire CIS Oracle MySQL Community for making this happen.
Download the CIS Oracle MySQL Benchmarks in PDF.
CIS SecureSuite Members can access content via CIS WorkBench to download other formats and related resources of these CIS Benchmarks:
- Oracle MySQL Community Server 5.6
- Oracle MySQL Enterprise Edition 5.6
- CIS Oracle MySQL Community Server 5.7
- Oracle MySQL Enterprise Edition 5.7
Two Updated CIS Benchmarks for Windows Server 2016
- CIS Microsoft Windows Server 2016 Benchmark v1.4.0
- CIS Microsoft Windows Server 2016 STIG Benchmark v1.2.0
Both Benchmarks include 17 new settings, five updated settings, six moved settings, two renamed settings, as well as several sections that have been moved, added, and renamed due to updated ADMX templates.
A huge thank you to the CIS Windows Community and Windows Team for making this happen. Special thanks to Haemish Edgerton.
Download the CIS Microsoft Windows Server 2016 Benchmarks in PDF.
CIS SecureSuite Members can visit CIS WorkBench here and here to download other formats and related resources.
CIS Benchmarks Community
Want to help develop technical content, review recommendations, and test CIS Benchmarks? You can do all this by joining a CIS Benchmarks Community in need.
- Apache Cassandra
- Fortinet (Preferred with FortiGate expertise)
- IBM WebSphere Liberty
- IBM z/OS
- IBM Db2
If you're interested, please reach out to us at [email protected]. You can also learn more on the CIS Benchmarks Community page.
