Compliance
Current Posture Score
35.63%
Passed Checks
23,969
Failed Checks
43,298
Top 5 Lowest Scoring Compliance Frameworks
Framework view
| Framework | Description | Total Checks | Passed Checks | Failed Checks | Posture Score |
|---|---|---|---|---|---|
AWS Account Security Onboarding
|
Checklist when onboarding new AWS Accounts to existing AWS Organization. | 961 | 32 | 929 |
3.33%
|
|
AWS Audit Manager Control Tower Guardrails
|
AWS Control Tower is a management and governance service that you can use to nav... | 99 | 67 | 32 |
67.68%
|
|
AWS Foundational Security Best Practices
|
The AWS Foundational Security Best Practices standard is a set of controls that ... | 736 | 282 | 454 |
38.32%
|
|
AWS Foundational Technical Review
|
The AWS Foundational Technical Review (FTR) assesses an AWS Partner's solution a... | 426 | 202 | 224 |
47.42%
|
|
AWS Well-Architected Framework Reliability Pillar
|
Best Practices for the AWS Well-Architected Framework Reliability Pillar encompa... | 17 | 2 | 15 |
11.76%
|
|
AWS Well-Architected Framework Security Pillar
|
Best Practices for AWS Well-Architected Framework Security Pillar. The focus of ... | 823 | 412 | 411 |
50.06%
|
CIS Amazon Web Services Foundations Benchmark v1.4.0
|
The CIS Benchmark for CIS Amazon Web Services Foundations Benchmark, v1.4.0, Lev... | 296 | 107 | 189 |
36.15%
|
|
CIS Amazon Web Services Foundations Benchmark v1.5.0
|
The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance... | 327 | 108 | 219 |
33.03%
|
|
CIS Amazon Web Services Foundations Benchmark v2.0.0
|
The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance... | 321 | 100 | 221 |
31.15%
|
|
CIS Amazon Web Services Foundations Benchmark v3.0.0
|
The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance... | 318 | 99 | 219 |
31.13%
|
|
CIS Amazon Web Services Foundations Benchmark v4.0.1
|
The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance... | 319 | 100 | 219 |
31.35%
|
|
CIS Amazon Web Services Foundations Benchmark v5.0.0
|
The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance... | 325 | 106 | 219 |
32.62%
|
|
CIS Amazon Web Services Foundations Benchmark v6.0.0
|
The CIS Amazon Web Services Foundations Benchmark provides prescriptive guidance... | 318 | 100 | 218 |
31.45%
|
| AWS CISA Cyber Essentials framework | Cybersecurity & Infrastructure Security Agency's (CISA) Cyber Essentials is a gu... | 693 | 337 | 356 |
48.63%
|
CSA Cloud Controls Matrix (CCM) v4.0.13
|
The Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) is a cybersecurity... | 1,626 | 371 | 1,255 |
22.82%
|
| AWS Cloud Computing Compliance Criteria Catalogue C5 | This Directive lays down measures that aim to achieve a high common level of cyb... | 5,100 | 1,283 | 3,817 |
25.16%
|
| AWS ENS RD 311/2022 - Categoría Alta | The accreditation scheme of the ENS (National Security Scheme) has been develope... | 1,519 | 543 | 976 |
35.75%
|
| AWS FFIEC Cybersecurity Assessment Tool framework | In light of the increasing volume and sophistication of cyber threats, the Feder... | 1,623 | 393 | 1,230 |
24.21%
|
FedRAMP 20x Key Security Indicators (KSIs) - Low Impact Level v25.05C
|
FedRAMP 20x Key Security Indicators (KSIs) Low Impact Level represent core secur... | 652 | 184 | 468 |
28.22%
|
|
FedRAMP Low Revision 4
|
The Federal Risk and Authorization Management Program (FedRAMP) was established ... | 945 | 369 | 576 |
39.05%
|
|
FedRAMP Moderate Revision 4
|
The Federal Risk and Authorization Management Program (FedRAMP) was established ... | 2,924 | 987 | 1,937 |
33.76%
|
GDPR compliance framework
|
The General Data Protection Regulation (GDPR) is a new European privacy law that... | 261 | 85 | 176 |
32.57%
|
| AWS GxP (Good Practices) 21 CFR Part 11 | GxP refers to the regulations and guidelines that are applicable to life science... | 730 | 394 | 336 |
53.97%
|
| AWS GxP (Good Practices) EU Annex 11 | The GxP EU Annex 11 framework is the European equivalent to the FDA 21 CFR part ... | 315 | 76 | 239 |
24.13%
|
HIPAA compliance framework
|
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is legis... | 1,768 | 711 | 1,057 |
40.21%
|
ISO/IEC 27001 Information Security Management Standard 2013
|
ISO (the International Organization for Standardization) and IEC (the Internatio... | 195 | 75 | 120 |
38.46%
|
|
ISO/IEC 27001 Information Security Management Standard 2022
|
ISO (the International Organization for Standardization) and IEC (the Internatio... | 1,708 | 758 | 950 |
44.38%
|
| AWS KISA ISMS compliance framework 2023 | The ISMS-P certification, established by KISA (Korea Internet & Security Agency)... | 3,082 | 1,368 | 1,714 |
44.39%
|
| AWS KISA ISMS compliance framework 2023 (Korean) | ISMS-P 인증은 한국인터넷진흥원(KISA)이 제정한 정보보호 및 개인정보보호 관리체계를 기반으로, 독립적인 심사기관이 기업이나 조직의 보안 ... | 3,081 | 1,368 | 1,713 |
44.4%
|
MITRE ATT&CK compliance framework
|
MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and t... | 2,647 | 966 | 1,681 |
36.49%
|
| AWS NIS2 - Network and Information Security Directive (Directive (EU) 2022/2555) | ANNEX to the Commission Implementing Regulation laying down rules for the applic... | 847 | 224 | 623 |
26.45%
|
National Institute of Standards and Technology (NIST) 800-171 Revision 2
|
The cybersecurity controls within NIST 800-171 safeguard CUI in the IT networks ... | 2,651 | 876 | 1,775 |
33.04%
|
|
National Institute of Standards and Technology (NIST) 800-53 Revision 4
|
NIST 800-53 is a regulatory standard that defines the minimum baseline of securi... | 2,010 | 630 | 1,380 |
31.34%
|
|
National Institute of Standards and Technology (NIST) 800-53 Revision 5
|
The NIST 800-53 (Rev. 5) Low-Moderate-High framework represents the security con... | 9,899 | 4,333 | 5,566 |
43.77%
|
|
National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) v1.1
|
The NIST Cybersecurity Framework (CSF) is supported by governments and industrie... | 2,422 | 512 | 1,910 |
21.14%
|
|
National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) v2.0
|
The NIST Cybersecurity Framework (CSF) 2.0 offers a taxonomy of high-level cyber... | 2,477 | 952 | 1,525 |
38.43%
|
Payment Card Industry Data Security Standard (PCI DSS) v3.2.1
|
The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary info... | 2,850 | 806 | 2,044 |
28.28%
|
|
Payment Card Industry Data Security Standard (PCI DSS) v4.0
|
The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary info... | 4,459 | 1,835 | 2,624 |
41.15%
|
| AWS Prowler ThreatScore Compliance Framework for AWS | Prowler ThreatScore Compliance Framework for AWS ensures that the AWS account is... | 424 | 198 | 226 |
46.7%
|
| AWS Reserve Bank of India (RBI) Cyber Security Framework | The Reserve Bank had prescribed a set of baseline cyber security controls for pr... | 287 | 129 | 158 |
44.95%
|
| AWS SecNumCloud Referentiel d'Exigences v3.2 | The SecNumCloud framework is published by ANSSI (Agence Nationale de la Securite... | 1,235 | 257 | 978 |
20.81%
|
System and Organization Controls 2 (SOC2)
|
System and Organization Controls (SOC), defined by the American Institute of Cer... | 1,195 | 238 | 957 |
19.92%
|
|
ccc_aws
|
Common Cloud Controls Catalog (CCC) for AWS | 2,356 | 994 | 1,362 |
42.19%
|