D9.GCP.CRY.01 | Ensure VM Disks for Critical VMs Are Encrypted With Customer-Supplied Encryption Keys (CSEK) | Medium | Modification | | | | - GCP CloudGuard CheckUp
- GCP CIS Foundations v. 1.3.0
- GCP Security Risk Management
- GCP LGPD regulation
- GCP NIST Special Publication 800-53 (Rev. 5)
- GCP PCI-DSS 4.0
- GCP CIS Foundations v. 2.0
- GCP MITRE ATT&CK Framework v12.1
- CloudGuard GCP All Rules Ruleset
- GCP CIS Critical Security Controls v8
- GCP CIS Foundations v. 1.0.0
- GCP ISO 27001:2022
- GCP APRA 234
- GCP Cloud Security Alliance CCM v4
- GCP Esquema Nacional Seguridad (ENS) 2022
- GCP Risk Management in Technology (RMiT)
- GCP Australian Cyber Security Centre (ACSC) Information Security Manual
- GCP US FedRAMP R5 (moderate)
- GCP ISO 27017:2015
- GCP SWIFT Customer Security Programme CSCF
- GCP NIST Special Publication 800-172
- GCP U.S. Sarbanes-Oxley Act (Section 404)
- GCP PCI-DSS 3.2
- GCP Secure Controls Framework (SCF)
- GCP ISO 27002:2022
- GCP Cybersecurity Maturity Model Certification (CMMC) 2.0
- GCP NIST Special Publication 800-171 (Rev. 2)
- GCP NIST 800-53 Rev 4
- GCP NY Department of Financial Services (DFS) 23 CRR 500
- GCP New Zealand Information Security Manual (NZ ISM) v3.6
- GCP ISO 27001:2013
- GCP NIST Cybersecurity Framework (CSF) v1.1
- GCP CloudGuard SOC2 based on AICPA TSC 2017
- GCP Health Insurance Portability and Accountability Act (U.S. HIPAA)
- GCP Dashboard System Ruleset
- GCP EU GDPR
- GCP CIS Foundations v. 1.1.0
- GCP CIS Foundations v. 1.2.0
- GCP CloudGuard Best Practices
|
D9.AWS.IAM.190 | Ensure that Authorization Type in AWS Kafka Connect Connector is not set to None | High | Modification | | - MSKConnectConnector should not have kafkaClusterClientAuthentication.authenticationType.value!='None'
| - MSKConnectConnector should not have kafkaClusterClientAuthentication.authenticationType.value='None'
| - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.142 | Ensure that AppFlow should have tags | Low | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.143 | Ensure that MediaStoreContainer should have tags | Low | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.144 | Ensure that DataSyncStorage should have tags | Low | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.145 | Ensure that CloudTrail should have tags | Low | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.148 | Ensure that EksCluster should have tags | Low | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.149 | Ensure AWS Verified Access should have FIPS status enabled | High | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.AWS.OPE.150 | Ensure AWS Verified Access should have tags | Low | New | | | | - CloudGuard AWS All Rules Ruleset
|
D9.GCP.NET.80 | Cloud Armor Security Policy Default Rule Action should be 'Deny' | High | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.21 | Ensure that DnsManagedZone should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.22 | Ensure that PubSubTopic should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.23 | Ensure that VMInstance should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.24 | Ensure that Filestore Instance should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.25 | Ensure that DataprocCluster should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.26 | Ensure that Secret should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.27 | Ensure that Disk should have tags | Low | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.GCP.OPE.28 | Ensure that 'Disable Automatic IAM Grants for Default Service Accounts' policy is enforced for Google Cloud Platform (GCP) organizations | Medium | New | | | | - CloudGuard GCP All Rules Ruleset
|
D9.ALI.OPE.01 | Ensure that Auto Scaling Group should have Deletion Protection enabled | Low | New | | | | - CloudGuard Alibaba All Rules Ruleset
|
D9.ALI.OPE.02 | Ensure Auto Scaling group have scaling cooldown higher than a minute | Low | New | | | | - CloudGuard Alibaba All Rules Ruleset
|
D9.OCI.OPE.05 | Ensure that Tenancy should have defined tags | Low | New | | | | - CloudGuard OCI All Rules Ruleset
|