Added
View All Tags
The Stax Terraform provider will aid organizations using infrastructure-as-code to manage their AWS environments. The first release of this provider is now available and is released as a developer preview. It is not yet feature-complete and is not considered to be production-ready, rather exclusively for evaluation and feedback purposes.
For more information and to get started, see About the Stax Terraform Provider.
The new Partner Hosted Foundational Technical Review (FTR) Rule Bundle is designed to assist organizations to prepare for the AWS Partner Hosted FTR. This bundle provides evidence to support the AWS FTR self-assessment, ensuring a smooth and streamlined compliance process.
The Partner Hosted FTR bundle is now available to all organizations. Add the Bundle to Stax to get going. Once added, Stax will perform an initial evaluation and automatically populate the Rules page with the latest results.
Permission Sets now supports the ability to reference AWS managed policies when defining granular permissions for your roles. This can be used in combination with an inline policy to define longer policies.
See Create a permission set for details on how to reference AWS managed policies.
The NIST Cybersecurity Framework Rule Bundle is now available in private preview. This Bundle consists of standards, guidelines and best practices designed to help organizations manage cybersecurity risks. Read more here.
As announced on 12 May 2023, Stax now provides advanced configuration options for Amazon GuardDuty protection plans and settings.
See Using Stax-managed GuardDuty for details on using Stax-managed GuardDuty.
The Australian Cyber Security Centre (ACSC)'s Essential Eight Rule Bundle is now available in private preview. This Bundle is designed to help organizations protect against cyber security threats. Read more here.
When setting budgets that leverage your Views, you can now sort the budget table by segment name and download the budget data to CSV. Find out more here.
The Payment Card Industry Data Security Standard (PCI DSS) v3.2.1 Rule Bundle is now available to all organizations. This Bundle is designed to help customers maintain the security of cardholder data and protect against fraudulent activities.
The new PCI DSS Rule Bundle includes over 40 controls across 17 AWS services and 17 new rules.
Add the Bundle to Stax to get going. Once added, Stax will perform an initial evaluation and populate the Rules page with new results. You can filter the page to show only results from the PCI DSS if preferred. Read more about the Stax PCI DSS Rule Bundle here. Alternatively, to add the new rules to your Organization Rule Bundle, head to the Rules Catalog page.
The Compliance Summary Report which is available in Excel format, now includes the On this status since* data for every Rule's resources. The On this status sincefield ***can be found on the Rule Details page and represents the date and time in UTC when the resource's current status was detected.
To access the Compliance Summary Report, navigate to the Rules page and select the download icon on the top right of the page.
Organizations with a resold account ownership model, now have access to Stax-managed Cost and Usage Reports (CUR) in S3, in both CSV and parquet formats. Find out more here.