turbot/gcp_compliance
GitHub
Loading controls...

Benchmark: CIS v2.0.0

To obtain the latest version of the official guide, please visit http://benchmarks.cisecurity.org.

Overview

The CIS Google Cloud Platform Foundations Security Benchmark covers foundational elements of Google Cloud Platform.

Profiles

The following configuration profiles are defined by this Benchmark:

Level 1

Items in this profile intend to:

  • be practical and prudent;
  • provide a clear security benefit; and
  • not inhibit the utility of the technology beyond acceptable means.

Level 2

This profile extends the "Level 1" profile. Items in this profile exhibit one or more of the following characteristics:

  • are intended for environments or use cases where security is more critical than manageability and usability
  • acts as defense in depth measure
  • may impact the utility or performance of the technology
  • may include additional licensing, cost, or addition of third party software

Usage

Browse dashboards and select CIS v2.0.0:

steampipe dashboard

Or run the benchmarks in your terminal:

steampipe check gcp_compliance.benchmark.cis_v200

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share gcp_compliance.benchmark.cis_v200

Benchmarks

Tags