Compliance for CIS Benchmarks | Datadog

Compliance for CIS Benchmarks

Enhance system security using industry-standard best practices

Maintaining regulatory compliance is necessary for organizations that do not want to leave their systems vulnerable to attacks or face costly audit penalties. CIS benchmarks, published by the Center for Internet Security (CIS), help organizations assess the current state of their environment's security configurations in order to reduce system vulnerabilities. Since these benchmarks cover a sizable list of operating systems, software, and hardware, organizations need the ability to mitigate any compliance issues as quickly as possible.

Automatically detect system vulnerabilities

Organizations need to be proactive in catching system misconfigurations, or they risk compromising valuable and confidential customer data. Datadog's built-in cloud configuration rules require no extra setup and enable teams to routinely monitor all of their services. These rules are also automatically mapped to various CIS benchmarks, so organizations can actively monitor their systems against the most up-to-date benchmarks and surface vulnerabilities immediately.

Increase compliance visibility at cloud scale

Building and maintaining a secure environment requires thorough configuration management for every system resource—from cloud provider user policies to network traffic on individual nodes. Datadog scans every resource in real time, so organizations can identify and fill critical security gaps before they become more serious. If Datadog detects a potential compliance issue, teams are automatically alerted with clear steps to resolve the problem.

Receive automatic alerts when a potential compliance issue is detected.

Seamless integration for faster, easier audits

As part of the Datadog cloud security platform, CSPM seamlessly integrates with an organization's cloud environment and resources, so teams can gather the information needed to conduct thorough compliance audits without the need for third-party assessments or special training. For example, Datadog's compliance dashboards give teams a shareable report card of compliance findings across their cloud and local environments, so they can review the state of any resource at a glance.