Re: CIS Benchmarks

RobertoQ

CIS Benchmarks - Center for Internet Security - The Center for Internet Security (CIS) benchmarks are a set of best-practice cybersecurity standards for a range of IT systems and products. CIS Benchmarks provide the baseline configurations to ensure compliance with industry-agreed cybersecurity standards. The benchmarks are developed by CIS alongside communities of cybersecurity experts within industry and research institutes.

*following CIS Critical Security Controls Version 8

zaryhu · ‎2023-11-24

Awesome I have been looking for this and will give it a shot!
🥇

the_rock · ‎2023-11-25

Nice one! 👍

the_rock · ‎2023-11-25

We actually have corporate account for this and its super useful. I verified different fw vendors and suggestions they give on their website, its definitely accurate.

Best regards,

Andy

zaryhu · ‎2023-12-05

Any chance the CIS Windows 10 Enterprise JSON could be provided?

I would like to see if it can be applied to our Endpoints in detect mode as a compliance for workstations.

Chris_Atkinson · ‎2023-12-05

Unlikely since the scope here is the Compliance Blade for security gateways.

Comparatively Compliance Blade for Harmony Endpoint has different objectives, as does the Application Control function (App Whitelisting). Note Patch & Vulnerability Management are also available there as additional capabilities where relevant.

CCSM R77/R80/ELITE

the_rock · ‎2023-12-05

Chris makes a good point. Compliance blade is more related to firewalls, not endpoints.

Andy

Lutnix · ‎2023-12-09

Good day

Does this correspond to a specific ISO standard?

Thank you

Lutnix

RobertoQ · ‎2023-12-11

These definitions for Compliance Blade are based on CIS Critical Security Controls V8.

Chris_Atkinson · ‎2023-12-11

We also have built-in coverage for ISO 27001 & ISO 27002, please refer sk120256 for more information.

CCSM R77/R80/ELITE

ekogan · ‎2023-12-31

We conduct CIS controls assessment (gap analysis) and further CP products mapping

take a look here: Cyber Security Consulting Services - Check Point Software

libormales · ‎2024-05-31

Hi RobertoQ, Thanks for sharing CIS benchmark cybersecurity standards for Checkpoint COMPL.

I've tried to import the archive to compliance blade, but the cis benchmark checks have nothing to do with original CIS Check Point Firewall Benchmark v1.1.0 https://workbench.cisecurity.org/benchmarks/572.

Can you please clarify?

Many thanks

Libor

the_rock · ‎2024-05-31

Maybe different version?

Corinne_Vakulen · ‎2024-06-02

Hi,

CIS Benchmarks are standardized cybersecurity configuration guidelines developed by CIS, while CIS WorkBench is a platform that allows organizations to customize and manage benchmarks to fit their individual requirements.

CIS Benchmarks version 8 is implemented into Compliance (latest version). You may read the downloaded PDF file with samples of the requirements mapped to our Best Practices.

I hope it helps.

Corinne

the_rock · ‎2024-06-02

Perfect explanation Corinne. My company has corporate account for CIS benchmark site and I verified the info is indeed accurate.

Best,

Andy

libormales · ‎2024-06-03

Hi,

Thanks a lot for a detailed explanation. So if I understand it correctly this compliance was created based on CIS Critical Security Controls Version 8 (https://learn.cisecurity.org/CIS-Controls-v8-guide-pdf) which is focused mostly on cyber-security.

The one I mentioned earlier, Check Point Firewall Benchmark v1.1.0 (https://workbench.cisecurity.org/benchmarks/572) is moreless focused on establishing a secure configuration.

Many thanks

Libor

Corinne_Vakulen · ‎2024-06-03

Hi, well to be more exact, Compliance blades checks how your organization complies to multiple regulatory frameworks (not just CIS benchmarks). You may check our Compliance Repository for the the latest regulatory mappings.

Thanks

Corinne

Perseus · ‎2024-11-14

will this work for R81.10 R81.20? Instructions to use the XML?

RobertoQ · ‎2024-11-14

Yes it works with those versions. There are instructions on how to import the .XML on the download here.

Perseus · ‎2024-11-14

Thank you.

the_rock · ‎2024-11-15

This reminded me, will test this today in R82 lab.

Andy

Filters

Sort By

Categories

CIS Benchmarks

SmartEvent Type: CIS, Compliance,

Disclaimer: Check Point does not provide maintenance services or technical or customer support for third party content provided on this Site, including in CheckMates Toolbox. See also our Third Party Software Disclaimer.