Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 

CIS Benchmarks

SmartEvent Type: CIS, Compliance,

RobertoQ
Employee
Employee
Verified By CP

CIS Benchmarks - Center for Internet Security - The Center for Internet Security (CIS) benchmarks are a set of best-practice cybersecurity standards for a range of IT systems and products. CIS Benchmarks provide the baseline configurations to ensure compliance with industry-agreed cybersecurity standards. The benchmarks are developed by CIS alongside communities of cybersecurity experts within industry and research institutes.

 

*following CIS Critical Security Controls Version 8

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free

Disclaimer: Check Point does not provide maintenance services or technical or customer support for third party content provided on this Site, including in CheckMates Toolbox. See also our Third Party Software Disclaimer.




(1)
20 Replies

zaryhu
Participant

Awesome I have been looking for this and will give it a shot!
🥇

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


the_rock
Legend
Legend

Nice one! 👍

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


the_rock
Legend
Legend

We actually have corporate account for this and its super useful. I verified different fw vendors and suggestions they give on their website, its definitely accurate.

Best regards,

Andy

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


(1)

zaryhu
Participant

Any chance the CIS Windows 10 Enterprise JSON could be provided?

I would like to see if it can be applied to our Endpoints in detect mode as a compliance for workstations.

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

Chris_Atkinson
Employee Employee
Employee

Unlikely since the scope here is the Compliance Blade for security gateways.

Comparatively Compliance Blade for Harmony Endpoint has different objectives, as does the Application Control function (App Whitelisting).  Note Patch & Vulnerability Management are also available there as additional capabilities where relevant.

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

the_rock
Legend
Legend

Chris makes a good point. Compliance blade is more related to firewalls, not endpoints.

Andy

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

Lutnix
Explorer

Good day

 

Does this correspond to a specific ISO standard?

 

Thank you

 

Lutnix

 

 

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

RobertoQ
Employee
Employee

These definitions for Compliance Blade are based on CIS Critical Security Controls V8.

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


Chris_Atkinson
Employee Employee
Employee

We also have built-in coverage for ISO 27001 & ISO 27002, please refer sk120256 for more information.

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


(1)

ekogan
Employee
Employee

We conduct CIS controls assessment (gap analysis) and further CP products mapping 

take a look here: Cyber Security Consulting Services - Check Point Software

 

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

libormales
Explorer

Hi RobertoQ, Thanks for sharing CIS benchmark cybersecurity standards for Checkpoint COMPL.

I've tried to import the archive to compliance blade, but the cis benchmark checks have nothing to do with original CIS Check Point Firewall Benchmark v1.1.0 https://workbench.cisecurity.org/benchmarks/572.

Can you please clarify?

Many thanks

Libor

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

the_rock
Legend
Legend

Maybe different version?

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

Corinne_Vakulen
Employee
Employee

Hi,

CIS Benchmarks are standardized cybersecurity configuration guidelines developed by CIS, while CIS WorkBench is a platform that allows organizations to customize and manage benchmarks to fit their individual requirements.

CIS Benchmarks version 8 is implemented into Compliance (latest version). You may read the downloaded PDF file with samples of the requirements mapped to our Best Practices.

I hope it helps.

Corinne

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


(1)

the_rock
Legend
Legend

Perfect explanation Corinne. My company has corporate account for CIS benchmark site and I verified the info is indeed accurate.

Best,

Andy

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

libormales
Explorer

Hi,

Thanks a lot for a detailed explanation. So if I understand it correctly this compliance was created based on CIS Critical Security Controls Version 8 (https://learn.cisecurity.org/CIS-Controls-v8-guide-pdf)  which is focused mostly on cyber-security.

The one I mentioned earlier, Check Point Firewall Benchmark v1.1.0 (https://workbench.cisecurity.org/benchmarks/572) is moreless focused on establishing a secure configuration.

Many thanks

Libor

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

Corinne_Vakulen
Employee
Employee

Hi, well to be more exact, Compliance blades checks how your organization complies to multiple regulatory frameworks (not just CIS benchmarks).  You may check our Compliance Repository for the the latest regulatory mappings.

Thanks

Corinne 

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

Perseus
Participant

will this work for R81.10 R81.20? Instructions to use the XML?

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

RobertoQ
Employee
Employee

Yes it works with those versions. There are instructions on how to import the .XML on the download here.

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


Perseus
Participant

Thank you.

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos

the_rock
Legend
Legend

This reminded me, will test this today in R82 lab.

Andy

;
TO ACCESS CHECKMATES TOOLBOX it's simple and free


0 Kudos