Skip to main content

Benchmark

Stackguardian offers a robust platform that enables users to implement benchmarks and assessments, ensuring their cloud services are optimized, secure, and compliant. The platform specializes in predefined evaluations for AWS and Azure connectors, enhancing efficiency, security, and compliance of cloud services.

Benchmark Optionsโ€‹

Stackguardian provides easy-to-enforce checks and benchmarks to maintain optimal performance, security, and compliance of cloud services. For detailed insights into how each benchmark applies to your infrastructure, click on the details button under the Discover > Insights tab.

Benchmark Options

Discover: Benchmark Options

  1. COST: Shows the sub-optimal configuration in the cloud environment regarding cost - unused, over-provisioned and misconfigured resources.

  2. CISA Cyber Essentials: Cybersecurity & Infrastructure Security Agency's (CISA) Cyber Essentials is a guide for leaders of small businesses as well as leaders of small and local government agencies to develop an actionable understanding of where to start implementing organizational cybersecurity practices.

  3. CIS AWS Foundation: All CIS Benchmarks focus on technical configuration settings used to maintain and/or increase the security of the addressed technology.

  4. GDPR: The GDPR applies to all organizations that are established in the EU and to organizations, whether or not established in the EU, that process the personal data of EU data subjects in connection with either the offering of goods or services to data subjects in the EU or the monitoring of behavior that takes place within the EU. Personal data is any information that relates to an identified or identifiable natural person.

  5. HIPAA: The HIPAA Security Rule establishes national standards to protect individuals' electronic personal health information that is created, received, used, or maintained by a covered entity. The Security Rule requires appropriate administrative, physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information.

  6. NIST: NIST 800-53 is a regulatory standard that defines the minimum baseline of security controls for all U.S. federal information systems except those related to national security. The controls defined in this standard are customizable and address a diverse set of security and privacy requirements.

  7. PCI DSS: PCI DSS comprises a minimum set of requirements for protecting account data, and may be enhanced by additional controls and practices to further mitigate risks, as well as local, regional and sector laws and regulations. Additionally, legislation or regulatory requirements may require specific protection of personal information or other data elements (for example, cardholder name).

  8. SOC 2: System and Organization Controls SOC 2 is an auditing procedure that ensures a company's data is securely managed.

  9. CFT Scorecard: The CFT Scorecard can be used to print a scorecard of your GCP environment, for resources and IAM policies in Cloud Asset Inventory (CAI) exports.

  10. FORSETI: Forseti Security is a collection of community-driven, open-source tools to help you improve the security of your Google Cloud Platform (GCP) environments. Forseti consists of core modules that you can enable, configure, and execute independently of each other. Community contributors are also developing add-on modules to offer unique capabilities. Forsetiโ€™s core modules work together, and provide a foundation that others can build upon.

  11. Custom Benchmarks: Allows the creation of your own Custom Benchmark checks.