Azure Compliance Mod

Run individual configuration, compliance and security controls or full CIS, HIPAA HITRUST and NIST compliance benchmarks across all your Azure subscriptions.



Azure provides on-demand cloud computing platforms and APIs to authenticated customers on a metered pay-as-you-go basis.

CIS Azure Benchmarks provide a predefined set of compliance and security best-practice checks for Microsoft Azure usage.

HIPAA HITRUST 9.2 provides a combined set of predefined compliance and security best-practice checks for Health Insurance Portability and Accountability Act.

NIST SP 800-53 Revision 5 defines the standards and guidelines for federal agencies to architect and manage their information security systems.

Steampipe is an open source CLI to instantly query cloud APIs using SQL.

Steampipe Mods are collections of named queries, and codified controls that can be used to test current configuration of your cloud resources against a desired configuration.


Get started

Install the Azure and the Azure Active Directory plugins with Steampipe:

steampipe plugin install azure
steampipe plugin install azuread


git clone https://github.com/turbot/steampipe-mod-azure-compliance.git
cd steampipe-mod-azure-compliance

Run all benchmarks:

steampipe check all

Run a benchmark:

steampipe check benchmark.cis_v130

Run a specific control:

steampipe check control.cis_v130_2_1_1


This mod uses the credentials configured in the Steampipe Azure plugin and the Steampipe Azure Active Directory plugin.


No extra configuration is required.

Get involved