📄️ AWS Partner Hosted Foundation Technical Review Rule Bundle
The AWS Foundational Technical Review (FTR) is an assessment process provided by AWS to help customers evaluate the foundational architecture of their AWS resources. It is designed to ensure that customers' workloads and applications are built on a secure, reliable, performant, operationally excellent, and cost-optimized foundation.
📄️ CIS AWS Foundations Benchmark Rule Bundle failures for Organization enabled services
As part of Stax's commitment to best practice, Stax configures certain services at the AWS Organization level as part of Stax Assurance on behalf of its customers. This means that it is configured within every region of every account in your AWS Organization. The CIS AWS Foundations Benchmark definitions are yet to cater for Organization enabled services and still audits on a per account basis. As a result, some rules in the CIS AWS Foundations Benchmark Rule Bundle may fail.
📄️ Delete a Rule from the Organization Bundle
The Stax Organization Rules Bundle is a collection of Rules that organizations can customize and manage based on their own specific AWS environment needs. In total, there are over 200 Rules in our Catalog that you can add to your Organization Rules Bundle. Unlike other preconfigured Rule Bundles provided by Stax, Rules in the Organization Rules Bundle can be disabled as well as deleted.
📄️ Monitoring Tag Compliance
Stax provides several ways to validate the tag compliance of resources within your Stax tenancy.
📄️ PCI DSS v3.2.1 Rule Bundle
In April 2023, Stax released the Payment Card Industry Data Security Standard (PCI DSS) version 3.2.1 Rule Bundle to help organizations validate their compliance against the standard.
📄️ S3 Buckets shouldn't be Publicly Open for Reads
Allowing public access to a S3 bucket can lead to having your company's data exposed. Leaving a S3 bucket open for public reads can lead to severe security issues such as data loss and unexpected charges on your AWS bill.
📄️ S3 Buckets shouldn't be Publicly Open
Granting access for the public to have read or write access to an S3 bucket can be a critical issue. Leaving a S3 bucket open for public access can lead to severe security issues such as data loss and unexpected charges on your AWS bill.
📄️ Stax Compliance NIST Cybersecurity Framework Bundle Preview Program
The National Institute of Standards and Technology (NIST) Cybersecurity Framework Rule Bundle is available to Stax customers as a private preview. General availability for this Rule Bundle is targeted for November 2023. Customers on the private preview program will have the opportunity for early access to the Rule Bundle, as well as any new Bundle Rules as they are released. See the join the preview section below to enrol.
📄️ Stax Compliance NIST Privacy Framework Bundle Preview Program
The National Institute of Standards and Technology (NIST) Privacy Framework Rule Bundle is available to Stax customers as a private preview. General availability for this Rule Bundle is targeted for November 2023. Customers on the private preview program will have the opportunity for early access to the Rule Bundle, as well as any new Bundle Rules as they are released. See the join the preview section below to enrol.
📄️ Stax Compliance PCI DSS v3.2.1 Bundle Preview Program
A PCI DSS v.3.2.1 Rule Bundle is available to Stax customers as a private preview. General availability for this Rule Bundle is targeted for April 2023. Customers on the private preview program will have the opportunity for early access to the Rule Bundle, as well as any new Bundle Rules as they are released. See the join the preview section below to enrol. To find out more about the PCI DSS Rule Bundle, read more here.