134 posts tagged with "Added"

The NIST Cybersecurity Framework Rule Bundle is now available to all organizations. This Bundle is designed to help customers fortify their AWS environment against cyber threats and strengthen their security posture.

The new bundle currently includes 86 controls and over 16 new rules, with more to be added during the preview phase.

Add the Bundle to your Stax console to get started. Once added, Stax will perform an initial evaluation and populate the Rules page with new results. You can filter the page to show only results from the NIST Cybersecurity Framework bundle if preferred. Alternatively, to add any of the new rules to your Organization Rule Bundle, head to the Rules Catalog page.

OUs can now be managed from within Stax and SCPs can now be attached to OUs and individual accounts. For more information, see the documentation.

The  Australian Cyber Security Centre Essential Eight Rule Bundle is now available to all organizations. This Bundle is designed to help customers fortify their AWS environment against cyber threats and strengthen their security posture.

The new Stax Compliance ACSC Essential Eight Rule Bundle includes 42 controls and 16 new rules.

Add the Bundle to Stax to get going. Once added, Stax will perform an initial evaluation and populate the Rules page with new results. You can filter the page to show only results from the Essential Eight bundle if preferred. Alternatively, to add any of the new rules to your Organization Rule Bundle, head to the Rules Catalog page.

The 0.1.0 release of the Stax Terraform provider marks the completion of support for the initial set of Stax resources.

Guidance for common tasks using the Terraform provider is available on the Terraform Registry:

1. Getting Started with Permission Sets

2. Importing Existing Stax Resources into Terraform

For more information and to get started, see About the Stax Terraform Provider.

A new Rule "S3 block public bucket account setting should be enabled" has been introduced to the S3 Best Practice Version 1.1 and PCI DSS Rule Bundles.

The rule checks whether the block public access setting is enabled at the account level.

To add this rule to your Organization Rule Bundle, head to the Rules Catalog page.

The National Institute of Standards and Technology (NIST) Privacy Framework Rule Bundle is now available in private preview. This Bundle is designed to help organizations improve their privacy practices through effective risk management. To learn more about the private preview, refer to our guide.

The Stax Terraform provider will aid organizations using infrastructure-as-code to manage their AWS environments. The first release of this provider is now available and is released as a developer preview. It is not yet feature-complete and is not considered to be production-ready, rather exclusively for evaluation and feedback purposes.

For more information and to get started, see About the Stax Terraform Provider.

The new Partner Hosted Foundational Technical Review (FTR) Rule Bundle is designed to assist organizations to prepare for the AWS Partner Hosted FTR. This bundle provides evidence to support the AWS FTR self-assessment, ensuring a smooth and streamlined compliance process.

The Partner Hosted FTR bundle is now available to all organizations. Add the Bundle to Stax to get going. Once added, Stax will perform an initial evaluation and automatically populate the Rules page with the latest results.

Permission Sets now supports the ability to reference AWS managed policies when defining granular permissions for your roles. This can be used in combination with an inline policy to define longer policies.

See Create a permission set for details on how to reference AWS managed policies.

The NIST Cybersecurity Framework Rule Bundle is now available in private preview. This Bundle consists of standards, guidelines and best practices designed to help organizations manage cybersecurity risks. Read more here.